DirWangK's starred repositories
PowerShell
PowerShell for every system!
raddebugger
A native, user-mode, multi-process, graphical debugger.
DidierStevensSuite
Please no pull requests for this repository. Thanks!
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
hypervisor
lightweight hypervisor SDK written in C++ with support for Windows, Linux and UEFI
Invisi-Shell
Hide your Powershell script in plain sight. Bypass all Powershell security features
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
invoke-atomicredteam
Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.
DotNetDetour
DotNetDetour is a software package for monitoring and instrumenting API calls
GraphStrike
Cobalt Strike HTTPS beaconing over Microsoft Graph API
CVE-2020-15368
CVE-2020-15368, aka "How to exploit a vulnerable driver"
Ultimate-RAT-Collection
For educational purposes only, samples of old & new malware builders including screenshots!
Antimalware-Research
Research on Anti-malware and other related security solutions
SEDR-Internals
Symantec EDR Internals
avred-server
The AMSI server for Avred
EDRSnowblast
This project is an EDRSandblast fork, adding some features and custom pieces of code.