drcyb3rr Goto Github PK
Name: Aviral Jain
Type: User
Bio: CRTO || Security Researcher
Name: Aviral Jain
Type: User
Bio: CRTO || Security Researcher
indirect syscalls for AV/EDR evasion in Go assembly
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
Payload Loader With Evasion Features
Reflective x64 PE/DLL Loader implemented using Dynamic Indirect Syscalls
Awesome AV/EDR/XDR Bypass Tips
BadZure orchestrates the setup of Azure Active Directory tenants, populating them with diverse entities while also introducing common security misconfigurations to create vulnerable tenants with multiple attack paths.
Adversary Emulation Framework
kill anti-malware protected processes (BYOVD)
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
Documentation about how to bypass AMSI or AV.
C++ self-Injecting dropper based on various EDR evasion techniques.
Self-developed tools for Lateral Movement/Code Execution
Automated DLL Sideloading Tool With EDR Evasion Capabilities
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
Useful Cobalt Strike techniques learned from engagements
Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
「🛡️」AVs/EDRs Evasion tool
C# AV/EDR Killer using less-known driver (BYOVD)
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing
DKMC - Dont kill my cat - Malicious payload evasion tool
Shellcode launcher for AV bypass
eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)
A proof of concept for abusing exception handlers to hook and bypass user mode EDR hooks.
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
Shellcode obfuscation tool to avoid AV/EDR.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.