edr-bypass topic

List edr-bypass repositories

DSC_SVC_REMOTE

47
Stars
10
Forks
Watchers

This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for local privilege escalation in the context of an unquoted service p...

verified publisher icon VirtualAlllocEx

Create_Thread_Inline_Assembly_x86

15
Stars
8
Forks
Watchers

This POC provides the possibilty to execute x86 shellcode in form of a .bin file based on x86 inline assembly

verified publisher icon VirtualAlllocEx

SilentWrite

16
Stars
2
Forks
Watchers

PoC arbitrary WPM without a process handle

verified publisher icon x0reaxeax

AMSI-BYPASS

129
Stars
30
Forks
Watchers

"AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS

verified publisher icon V-i-x-x

RWX_MEMEORY_HUNT_AND_INJECTION_DV

131
Stars
27
Forks
Watchers

Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.

verified publisher icon Offensive-Panda