Chimera
DefenderCheck
Our great sponsors
Chimera | DefenderCheck | |
---|---|---|
3 | 3 | |
1,260 | 2,130 | |
- | - | |
0.0 | 2.5 | |
over 2 years ago | 8 months ago | |
PowerShell | C# | |
- | BSD 3-clause "New" or "Revised" License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Chimera
DefenderCheck
- DefenderCheck - Identifies the bytes that Microsoft Defender flags on.
- DefenderCheck: Identifies the bytes that Microsoft Defender flags on
-
Anyone else having trouble bypassing Defender since yesterday?
Try using Defendercheck to see what the offending bytes are. Also, have you tried any AMSI bypasses?
What are some alternatives?
ThreatCheck - Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
BetterXencrypt - A better version of Xencrypt.Xencrypt it self is a Powershell runtime crypter designed to evade AVs.
mortar - evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
lscript - The LAZY script will make your life easier, and of course faster.
awesome-dotnet-core - :honeybee: A collection of awesome .NET core libraries, tools, frameworks and software
ConPtyShell - ConPtyShell - Fully Interactive Reverse Shell for Windows
Roslyn - The Roslyn .NET compiler provides C# and Visual Basic languages with rich code analysis APIs.
pixload - Image Payload Creating/Injecting tools
Avalonia - Develop Desktop, Embedded, Mobile and WebAssembly apps with C# and XAML. The most popular .NET UI client technology
Create-Thread-Shellcode-Fetcher - This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver.
Shhmon - Neutering Sysmon via driver unload