A protective and Low Level Shellcode Loader that defeats modern EDR systems.
-
Updated
Mar 20, 2024 - C
#
bypass-antivirus
Here are 15 public repositories matching this topic...
助力每一位RT队员,快速生成免杀木马
-
Updated
Apr 17, 2024 - C
Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting technique. Also, launchers are totally anti-copy and naturally broken when got submitted.
-
Updated
Oct 25, 2021 - C
An Ounce of Notorious Smartphones Antler Bullet. Penetrate iOS and Android
android ios backdoor surveillance panel trojan rat spyware penetration remote-access bypass-antivirus trust-attack
-
Updated
Sep 28, 2024 - C
A Dropper POC with a focus on aiding in EDR evasion, NTDLL Unhooking followed by loading ntdll in-memory, which is present as shellcode (using pe2shc by @hasherezade). Payload encryption via SystemFucntion033 NtApi and No new thread via Fiber
malware antivirus evasion bypass fiber dropper bypass-antivirus edr implant process-injection ntdll-unhooking systemfunction033
-
Updated
Feb 10, 2023 - C
Huorong Internet Security vulnerabilities 火绒安全软件漏洞
-
Updated
Apr 2, 2020 - C
PoC designed to evade userland-hooking anti-virus.
windows proof-of-concept userland malware poc malware-research bypass-av bypassantivirus hooking bypass-antivirus antivirus-evasion antivirus-testing hacky-hack-hack
-
Updated
May 15, 2019 - C
该项目为Shellocde加载器,详细介绍了我们如何绕过防病毒软件,以及该工具如何使用
-
Updated
Oct 24, 2022 - C
A PERSISTENT FUD Backdoor ReverseShell coded in C for any Windows distro, that will make itself persistent on every BOOT and fire a decoy app in the foreground while connecting back to the attacker machine as a silent background process , spawning a POWERSHELL on the attacker machine.
persistence evasion reverseshell bypass-antivirus fud av-evasion av-bypass complete-fud persistent-on-boot
-
Updated
May 28, 2019 - C
ADR is a trojan that retrieves all information on the computer and all data stored in applications using chormuim. It recovers cookies, tokens, passwords and saved bank cards. This malware is undetectable by Windows Defender, Chrome, Virustotal (4/71).
backdoor virus discord webhook grabber malware chromium trojan spyware payload virustotal bypass-antivirus cookie-grabber cookie-stealer dll-loader token-stealer discord-token-grabber token-grabber virustotal-bypass
-
Updated
Sep 5, 2023 - C
Closes handles of a remote process in attempt to crash it
-
Updated
Apr 26, 2023 - C
undetectable reverse shell that can bypass windows defender and other AVs, by resolving functions at runtime and string encoding/hashing.
-
Updated
Aug 14, 2024 - C
Framework and Native Payload - Payload Generator | Crypter FUD AntiVirus Evasion
windows obfuscation tool obfuscator bypass-av payload bypass-antivirus crypter fud crypter-fud fud-rat fud-backdoor fud-crypter crypter-defender fud-stealer crypter-rat crypter-bypass-wd
-
Updated
Jan 21, 2025 - C
Framework and Native Payload - Payload Generator | Crypter FUD AntiVirus Evasion
windows obfuscation tool obfuscator bypass-av payload bypass-antivirus crypter fud crypter-fud fud-rat fud-backdoor fud-crypter crypter-defender fud-stealer crypter-rat crypter-bypass-wd
-
Updated
Apr 2, 2025 - C
Improve this page
Add a description, image, and links to the bypass-antivirus topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the bypass-antivirus topic, visit your repo's landing page and select "manage topics."