Top 17 bypass-antivirus Open-Source Projects

• lscript

  2 3,844 0.0 Shell

  The LAZY script will make your life easier, and of course faster.

• Defeat-Defender-V1.2.0

  10 1,361 3.0 Batchfile

  Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

Project mention: Disabling defender with administrator, reverse shell | /r/hacking | 2023-05-13

Can you work around by creating a folder exception and then killing all the Defender services? https://github.com/swagkarna/Defeat-Defender-V1.2.0/blob/main/Defeat-Defender.bat

• InfluxDB

  www.influxdata.com sponsored

  Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  

• mortar

  3 1,345 5.7 Pascal

  evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR) (by 0xsp-SRD)

  

• Chimera

  3 1,260 0.0 PowerShell

  Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

• Alaris

  1 869 0.0 C

  A protective and Low Level Shellcode Loader that defeats modern EDR systems.

• chameleon

  4 465 2.7 Python

  PowerShell Script Obfuscator (by klezVirus)

• ScareCrow-CobaltStrike

  1 447 0.0 Python

  Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)

• WorkOS

  workos.com sponsored

  The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  

• Skrull

  3 437 1.8 C

  Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting technique. Also, launchers are totally anti-copy and naturally broken when got submitted.

• Payload-Download-Cradles

  1 249 0.0 PowerShell

  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR in context of download cradle detections.

• Create-Thread-Shellcode-Fetcher

  1 243 3.0 C++

  This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver.

• BetterXencrypt

  1 206 1.8 PowerShell

  A better version of Xencrypt.Xencrypt it self is a Powershell runtime crypter designed to evade AVs.

• onelinepy

  1 164 2.6 Python

  Python Obfuscator to generate One-Liners and FUD Payloads.

• URL-obfuscator

  1 159 0.0 Python

  Python Program to obfuscate URLs to make Phishing attacks more difficult to detect. Uses Active open redirect list and other URL obfuscation techniques.

• Theattacker-Crypter

  1 146 7.5 C#

  Tool to evade Antivirus With Different Techniques

Project mention: Theattacker-Crypter - Tool to evade Antivirus With Different Techniques | /r/CKsTechNews | 2023-05-18

• NativePayload_CBT

  1 115 0.0 C#

  NativePayload_CallBackTechniques C# Codes (Code Execution via Callback Functions Technique, without CreateThread Native API)

• window-rat

  1 88 3.9 Python

  The purpose of this tool is to test the window10 defender protection and also other antivirus protection.

• RedSharp

  1 55 0.0 C#

  Penetration Test / Read Team - C# tools repository

• SaaSHub

  www.saashub.com sponsored

  SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

  

bypass-antivirus related posts

• PayGen: FUD metasploit Persistencia RAT 💥
  1 project | /r/u_esgeeks | 31 Mar 2022
• mortar: evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
  2 projects | /r/purpleteamsec | 15 Dec 2021
• Mortar Loader: evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR) - Mortar Loader performs encryption and decryption of selected binary inside the memory streams and execute it directly with out writing any malicious indicator into the hard-drive
  1 project | /r/blueteamsec | 18 Dec 2021
• GitHub - aaaddress1/Skrull: Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting technique.
  1 project | /r/bag_o_news | 19 Oct 2021
• Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting technique
  1 project | /r/blueteamsec | 16 Oct 2021
• Skrull - A malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting technique. Also, launchers are totally anti-copy and naturally broken when got submitted.
  1 project | /r/purpleteamsec | 16 Oct 2021
• Anyone else having trouble bypassing Defender since yesterday?
  3 projects | /r/redteamsec | 24 Sep 2021
• A note from our sponsor - WorkOS
  workos.com | 25 Apr 2024

  The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning. Learn more →

Index

Sponsored

SaaSHub - Software Alternatives and Reviews

SaaSHub helps you find the best software and product alternatives

www.saashub.com