bypass-antivirus
There are 95 repositories under bypass-antivirus topic.
arismelachroinos / lscript
The LAZY script will make your life easier, and of course faster.
Language:Shell 3893LandGrey / webshell-detect-bypass
绕过专业工具检测的Webshell研究文章和免杀的Webshell
Language:Classic ASP 1653AabyssZG / WebShell-Bypass-Guide
从零学习Webshell免杀手册
swagkarna / Defeat-Defender-V1.2.0
Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC
Language:Batchfile 13600xsp-SRD / mortar
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
Language:Pascal 1345tokyoneon / Chimera
Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.
Language:PowerShell 1310RistBS / Awesome-RedTeam-Cheatsheet
Red Team Cheatsheet in constant expansion.
stormshadow07 / HackTheWorld
An Python Script For Generating Payloads that Bypasses All Antivirus so far .
Language:Python 910- Language:Go 888
- Language:C 868
- Language:Go 770
ajayrandhawa / Keylogger
Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. Blackcat keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture system screenshot and send to ftp server in given time.
Language:C++ 753- Language:Go 711
- Language:Go 593
wangfly-me / LoaderFly
助力每一位RT队员,快速生成免杀木马
Language:C 584G1ft3dC0d3 / MsfMania
Python AV Evasion Tools
Language:Python 481- Language:Python 463
DamonMohammadbagher / eBook-BypassingAVsByCSharp
eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)
- ScareCrow-CobaltStrike
GeorgePatsias / ScareCrow-CobaltStrike
Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)
Language:Python 448 aaaddress1 / Skrull
Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting technique. Also, launchers are totally anti-copy and naturally broken when got submitted.
Language:C 437INotGreen / GlllPowerloader
绕过AV/EDR的代码例子(Code example to bypass AV/EDR)
Language:Python 422langsasec / Sign-Sacker
Sign-Sacker(签名掠夺者):一款数字签名复制器,可将其他官方exe中数字签名,图标,详细信息复制到没有签名的exe中,作为免杀,权限维持,伪装的一种小手段。
Language:Python 397- Language:Go 336
CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.
Language:PowerShell 278Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.
Language:Shell 273- Language:Python 266
VirtualAlllocEx / Payload-Download-Cradles
This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR in context of download cradle detections.
Language:PowerShell 250- Antimalware-Research
NtRaiseHardError / Antimalware-Research
Research on Anti-malware and other related security solutions
Language:C++ 244 This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver.
Language:C++ 243- Language:Go 224
GetRektBoy724 / MeterPwrShell
Automated Tool That Generates The Perfect Meterpreter Powershell Payload
All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming
Language:C# 217A better version of Xencrypt.Xencrypt it self is a Powershell runtime crypter designed to evade AVs.
Language:PowerShell 207b1nhack / rust-shellcode
windows-rs shellcode loaders
Language:Rust 201sh3d0ww01f / nim_shellloader
nim,免杀,红队,shellcode,bypass,apt,bypass-av.
Language:Nim 1940xyg3n / PEx64-Injector
Inject your x64 bit executable to any process, masking it as a legitimate process for Anti-Virus evasion.
Language:C# 191
