iMonitorSDK
DripLoader
Our great sponsors
iMonitorSDK | DripLoader | |
---|---|---|
1 | 6 | |
320 | 666 | |
- | - | |
4.5 | 1.8 | |
9 days ago | over 2 years ago | |
C++ | C++ | |
- | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
iMonitorSDK
DripLoader
- Bypassing EDR real-time injection detection logic
- Does anyone know any good x64 shellcode loaders?
- DripLoader: Evasive shellcode loader for bypassing event-based injection detection
- DripLoader - Evasive shellcode loader for bypassing event-based injection detection
- DripLoader: Evasive shellcode loader for bypassing event-based injection detection, without necessarily suppressing event collection - aiming to highlight limitations of event-driven injection identification, and show the need for more advanced memory scanning/smarter local agent inventories in EDR
What are some alternatives?
EDR-Testing-Script - Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
MicroBackdoor - Small and convenient C2 tool for Windows targets. [ Русский -- значит нахуй! ]
orbit - C/C++ Performance Profiler
donut - Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
defender-control - An open-source windows defender manager. Now you can disable windows defender permanently.
pe_to_shellcode - Converts PE into a shellcode
BLUESPAWN - An Active Defense and EDR software to empower Blue Teams
TelemetrySourcerer - Enumerate and disable common sources of telemetry used by AV/EDR.
Ory Oathkeeper - A cloud native Identity & Access Proxy / API (IAP) and Access Control Decision API that authenticates, authorizes, and mutates incoming HTTP(s) requests. Inspired by the BeyondCorp / Zero Trust white paper. Written in Go.
CSharpReflectionWorkshop - The repository that complements the From zero to hero: creating a reflective loader in C# workshop
donut - Official Implementation of OCR-free Document Understanding Transformer (Donut) and Synthetic Document Generator (SynthDoG), ECCV 2022
Create-Thread-Shellcode-Fetcher - This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver.