Trending repositories for topic bypass-antivirus

🌟[NEW] Log by Telegram+Clipper ✅ [0/70] FUD Stealer can bypass all antivirus (Our Grabber can grabs: Wallets, Passwords, Credit Card, Cookies, Autofills, All Discord Token and info, Telegram, Twitter...

windows-rs shellcode loaders

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

🎃 PumpBin is an Implant Generation Platform.

助力每一位RT队员，快速生成免杀木马

Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture...

evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

The LAZY script will make your life easier, and of course faster.

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

Loading BOF & ShellCode without executable permission memory.

🌟[NEW] Log by Telegram+Clipper ✅ [0/70] FUD Stealer can bypass all antivirus (Our Grabber can grabs: Wallets, Passwords, Credit Card, Cookies, Autofills, All Discord Token and info, Telegram, Twitter...

windows-rs shellcode loaders

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

🎃 PumpBin is an Implant Generation Platform.

Loading BOF & ShellCode without executable permission memory.

助力每一位RT队员，快速生成免杀木马

Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture...

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

The LAZY script will make your life easier, and of course faster.

windows-rs shellcode loaders

🌟[NEW] Log by Telegram+Clipper ✅ [0/70] FUD Stealer can bypass all antivirus (Our Grabber can grabs: Wallets, Passwords, Credit Card, Cookies, Autofills, All Discord Token and info, Telegram, Twitter...

助力每一位RT队员，快速生成免杀木马

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Loading BOF & ShellCode without executable permission memory.

从零学习Webshell免杀手册

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总

🎃 PumpBin is an Implant Generation Platform.

助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan

Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture...

Red Team Cheatsheet in constant expansion.

Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

shellcode loader for your evasion needs

evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

The provided Python program, Nim-Backdoor.py, generates a Nim program that operates as a backdoor, allowing remote command execution via a netcat-like session. This tool is designed to work on both Li...

Generate DLL Hijacking Payload in batches.

Sign-Sacker(签名掠夺者)：一款数字签名复制器，可将其他官方exe中数字签名，图标，详细信息复制到没有签名的exe中，作为免杀，权限维持，伪装的一种小手段。

绕过专业工具检测的Webshell研究文章和免杀的Webshell

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

windows-rs shellcode loaders

The provided Python program, Nim-Backdoor.py, generates a Nim program that operates as a backdoor, allowing remote command execution via a netcat-like session. This tool is designed to work on both Li...

🌟[NEW] Log by Telegram+Clipper ✅ [0/70] FUD Stealer can bypass all antivirus (Our Grabber can grabs: Wallets, Passwords, Credit Card, Cookies, Autofills, All Discord Token and info, Telegram, Twitter...

免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

Loading BOF & ShellCode without executable permission memory.

助力每一位RT队员，快速生成免杀木马

🎃 PumpBin is an Implant Generation Platform.

Generate DLL Hijacking Payload in batches.

shellcode loader for your evasion needs

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan

Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture...

从零学习Webshell免杀手册

Red Team Cheatsheet in constant expansion.

Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

Sign-Sacker(签名掠夺者)：一款数字签名复制器，可将其他官方exe中数字签名，图标，详细信息复制到没有签名的exe中，作为免杀，权限维持，伪装的一种小手段。

evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

绕过专业工具检测的Webshell研究文章和免杀的Webshell

🌟[NEW] Log by Telegram+Clipper ✅ [0/70] FUD Stealer can bypass all antivirus (Our Grabber can grabs: Wallets, Passwords, Credit Card, Cookies, Autofills, All Discord Token and info, Telegram, Twitter...

助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan

shellcode loader for your evasion needs

从零学习Webshell免杀手册

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

windows-rs shellcode loaders

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

The LAZY script will make your life easier, and of course faster.

Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

Red Team Cheatsheet in constant expansion.

VB.NET tool by ABOLHB & WizNon for seamless injection into svchost, UAC bypass, Defender exclusions, and Discord notifications.

免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总

No description

🎃 PumpBin is an Implant Generation Platform.

An online AV evasion platform written in Springboot (Golang, Nim, C) supports embedded, local and remote loading of Shellocde methods.

Loading BOF & ShellCode without executable permission memory.

助力每一位RT队员，快速生成免杀木马

一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.

PowerShell Script Obfuscator

The famous XWorm RAT for free, all the popular RAT features. Please leave a star to this repository if you want to get more leaks

VB.NET tool by ABOLHB & WizNon for seamless injection into svchost, UAC bypass, Defender exclusions, and Discord notifications.

No description

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

🌟[NEW] Log by Telegram+Clipper ✅ [0/70] FUD Stealer can bypass all antivirus (Our Grabber can grabs: Wallets, Passwords, Credit Card, Cookies, Autofills, All Discord Token and info, Telegram, Twitter...

The famous XWorm RAT for free, all the popular RAT features. Please leave a star to this repository if you want to get more leaks

shellcode loader for your evasion needs

A private Runtime&Scantime crypter with an updating stub, lifetime license activated

免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总

windows-rs shellcode loaders

助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan

🎃 PumpBin is an Implant Generation Platform.

shellcode loader,bypassav,免杀，一款基于python的shellcode免杀加载器

Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.

An online AV evasion platform written in Springboot (Golang, Nim, C) supports embedded, local and remote loading of Shellocde methods.

Steal Telegram Session bypass 2fa using powershell script

The provided Python program, Nim-Backdoor.py, generates a Nim program that operates as a backdoor, allowing remote command execution via a netcat-like session. This tool is designed to work on both Li...

Loading BOF & ShellCode without executable permission memory.

Advanced Telegram x Discord C2, great for data Exfitration and Network evasion 🔷

Generate DLL Hijacking Payload in batches.

助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan

一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.

Loading BOF & ShellCode without executable permission memory.

An online AV evasion platform written in Springboot (Golang, Nim, C) supports embedded, local and remote loading of Shellocde methods.

🎃 PumpBin is an Implant Generation Platform.

免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

Advanced Telegram x Discord C2, great for data Exfitration and Network evasion 🔷

The famous XWorm RAT for free, all the popular RAT features. Please leave a star to this repository if you want to get more leaks

FTP lnk调用pythonw程序，用于攻防钓鱼场景下免杀运行捆绑木马文件

A private Runtime&Scantime crypter with an updating stub, lifetime license activated

A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal console builder.

The provided Python program, Nim-Backdoor.py, generates a Nim program that operates as a backdoor, allowing remote command execution via a netcat-like session. This tool is designed to work on both Li...

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

No description

VB.NET tool by ABOLHB & WizNon for seamless injection into svchost, UAC bypass, Defender exclusions, and Discord notifications.

D3vN3x-Crypter

助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan

一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.

从零学习Webshell免杀手册

Loading BOF & ShellCode without executable permission memory.

助力每一位RT队员，快速生成免杀木马

An online AV evasion platform written in Springboot (Golang, Nim, C) supports embedded, local and remote loading of Shellocde methods.

🎃 PumpBin is an Implant Generation Platform.

The LAZY script will make your life easier, and of course faster.

🌟[NEW] Log by Telegram+Clipper ✅ [0/70] FUD Stealer can bypass all antivirus (Our Grabber can grabs: Wallets, Passwords, Credit Card, Cookies, Autofills, All Discord Token and info, Telegram, Twitter...

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC

evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

windows-rs shellcode loaders

Sign-Sacker(签名掠夺者)：一款数字签名复制器，可将其他官方exe中数字签名，图标，详细信息复制到没有签名的exe中，作为免杀，权限维持，伪装的一种小手段。

Red Team Cheatsheet in constant expansion.

免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总

shellcode loader for your evasion needs

千机-红队免杀木马自动生成器 Bypass defender、火绒、360等国内主流杀软 随机加密混淆shellcode快速生成免杀马

Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture...

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

Loading BOF & ShellCode without executable permission memory.

免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总

Generate DLL Hijacking Payload in batches.

🌟[NEW] Log by Telegram+Clipper ✅ [0/70] FUD Stealer can bypass all antivirus (Our Grabber can grabs: Wallets, Passwords, Credit Card, Cookies, Autofills, All Discord Token and info, Telegram, Twitter...

A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal console builder.

FTP lnk调用pythonw程序，用于攻防钓鱼场景下免杀运行捆绑木马文件

Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.

The provided Python program, Nim-Backdoor.py, generates a Nim program that operates as a backdoor, allowing remote command execution via a netcat-like session. This tool is designed to work on both Li...

windows-rs shellcode loaders

Persistent Powershell backdoor tool {😈}

助力每一位RT队员，快速生成免杀木马

shellcode loader for your evasion needs

Steal Telegram Session bypass 2fa using powershell script

通过生成不同hash的ico并写入程序中，实现批量bypass360QVM

Sign-Sacker(签名掠夺者)：一款数字签名复制器，可将其他官方exe中数字签名，图标，详细信息复制到没有签名的exe中，作为免杀，权限维持，伪装的一种小手段。

frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can later be weaponized during Red Team Operations to evade AV/EDR'...

千机-红队免杀木马自动生成器 Bypass defender、火绒、360等国内主流杀软 随机加密混淆shellcode快速生成免杀马

集合多种方式的ShellcodeLoader

PowerShell script to terminate protected processes such as anti-malware and EDRs.

Tool to evade Antivirus With Different Techniques