GitHub topics: antivirus-evasion

0xheli0x/Helius_Crypter

An advanced encryption toolkit with AES-256 file encryption, decryption, and PDF exploit generation features.

Language: TypeScript - Size: 1.79 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 31 - Forks: 58

Yajham/ShellCode-Encrypt-Tool-Xor-Aes-Fud-Stable

RAT tools use shellcodes for remote access and system control. Shellcode injection and execution techniques bypass defenses, while red team tools focus on compiling and handling payloads for post-exploitation scenarios.

Language: C++ - Size: 222 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 0 - Forks: 1

Yajham/ShellCode-Elevator-Uac-Bypass-Inject-Any-X64-fud

Shellcode development involves creating payloads for post-exploitation tasks like antivirus evasion and UAC bypass. Tools like shellcode loaders and injectors enable execution, while assembly and encoders ensure stealth on Windows systems.

Language: C++ - Size: 365 KB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 1 - Forks: 1

Tetedu27/AskaLoader

Web-loader for executable files

Language: C# - Size: 1.1 MB - Last synced at: 6 days ago - Pushed at: 7 days ago - Stars: 1 - Forks: 1

VirtualAlllocEx/DEFCON-31-Syscalls-Workshop

Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".

Language: C - Size: 16.3 MB - Last synced at: 6 days ago - Pushed at: 2 months ago - Stars: 676 - Forks: 95

dobin/avred

Analyse your malware to surgically obfuscate it

Language: Python - Size: 8.04 MB - Last synced at: 5 days ago - Pushed at: about 2 months ago - Stars: 483 - Forks: 58

Yuragy/Bypass-Protection0x00

EDR & AV Bypass Arsenal— a comprehensive collection of tools, patches, and techniques for evading modern EDR and antivirus defenses.

Language: C - Size: 61.4 MB - Last synced at: 12 days ago - Pushed at: 12 days ago - Stars: 12 - Forks: 6

PushpenderIndia/apkinfector

Advanced Android AV Evasion Tool Written In Python 3 that can Embed/Bind meterpreter APK to any Legitimate APK

Language: Python - Size: 306 KB - Last synced at: 12 days ago - Pushed at: about 1 year ago - Stars: 293 - Forks: 80

VirtualAlllocEx/Create-Thread-Shellcode-Fetcher

This POC gives you the possibility to compile a .exe to completely avoid statically detection by AV/EPP/EDR of your C2-shellcode and download and execute your C2-shellcode which is hosted on your (C2)-webserver.

Language: C++ - Size: 2.71 MB - Last synced at: 6 days ago - Pushed at: about 2 years ago - Stars: 250 - Forks: 51

hegusung/AVSignSeek

Tool written in python3 to determine where the AV signature is located in a binary/payload

Language: Python - Size: 15.6 KB - Last synced at: 4 days ago - Pushed at: over 7 years ago - Stars: 314 - Forks: 51

hlldz/SpookFlare 📦

Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.

Language: Python - Size: 76.2 KB - Last synced at: 12 days ago - Pushed at: about 6 years ago - Stars: 950 - Forks: 187

phra/PEzor

Open-Source Shellcode & PE Packer

Language: C - Size: 222 KB - Last synced at: 12 days ago - Pushed at: over 1 year ago - Stars: 1,981 - Forks: 332

thomasxm/BOAZ_beta

Multilayered AV/EDR Evasion Framework

Language: C++ - Size: 85.8 MB - Last synced at: 18 days ago - Pushed at: 18 days ago - Stars: 696 - Forks: 115

Denvermagan/pe-packer

Packer for x86 Portable Executable applications encrypts code and adds obfuscation to hinder analysis. Support for x64 binaries is coming soon. 🛠️📦

Language: C++ - Size: 1.04 MB - Last synced at: 19 days ago - Pushed at: 19 days ago - Stars: 0 - Forks: 0

0xflux/Rust-Hells-Gate

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

Language: Rust - Size: 70.3 KB - Last synced at: 13 days ago - Pushed at: about 1 year ago - Stars: 60 - Forks: 9

Fadouse/AVKiller

A simple tool designed to restrict the capabilities of core antivirus processes by dropping privileges

Language: C++ - Size: 26.4 KB - Last synced at: 18 days ago - Pushed at: 2 months ago - Stars: 10 - Forks: 2

P1rat3L00t/Ransom3x

Adversarial Prompt Engineering 3x model.

Language: C++ - Size: 824 KB - Last synced at: 25 days ago - Pushed at: 25 days ago - Stars: 0 - Forks: 0

thomasxm/BOAZ

A Multilayered AV/EDR Evasion Framework and AV Testing Tool.

Size: 60.5 KB - Last synced at: 25 days ago - Pushed at: 25 days ago - Stars: 9 - Forks: 1

darkhorseun/ShellCode-Elevator-Uac-Bypass-Inject-Any-X64-fud

Shellcode development involves creating payloads for post-exploitation tasks like antivirus evasion and UAC bypass. Tools like shellcode loaders and injectors enable execution, while assembly and encoders ensure stealth on Windows systems.

Size: 2.5 MB - Last synced at: 26 days ago - Pushed at: 26 days ago - Stars: 0 - Forks: 0

a9v8i/AndTroj

Android Remote Access Trojan Binder

Language: Shell - Size: 98.6 KB - Last synced at: 26 days ago - Pushed at: 26 days ago - Stars: 13 - Forks: 4

EvilBytecode/PayloadCrypter

Go Based Crypter That Can Bypass Any Kinds Of Antivirus Products, payload crypter supports over 4 programming languages.

Language: Go - Size: 31.3 KB - Last synced at: 7 days ago - Pushed at: 3 months ago - Stars: 47 - Forks: 8

mauricelambert/PyPePacker

This package implements a packer written in python, the packer reduce the size (gzip compression), encrypt data (RC6 encryption) and reduce data entropy (using EntropyEncoding).

Language: Python - Size: 57.6 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 1 - Forks: 0

DamonMohammadbagher/NativePayload_Reverse_tcp

Meterpreter Encrypted Payload by C#

Language: C# - Size: 2.54 MB - Last synced at: 23 days ago - Pushed at: about 2 years ago - Stars: 163 - Forks: 64

mochabyte0x/CTFPacker

Cross platform (Linux / Windows) shellcode packer for CTFs and pentest / red team exams aiming for AV evasion !

Language: C - Size: 340 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 61 - Forks: 8

VirtualAlllocEx/Payload-Download-Cradles

This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR in context of download cradle detections.

Language: PowerShell - Size: 47.9 KB - Last synced at: 6 days ago - Pushed at: about 3 years ago - Stars: 256 - Forks: 52

bobby-tablez/Invoke-Mathfuscation

A quick command line utility that generates uses simple addition to obfuscate individual characters, then executes it

Language: PowerShell - Size: 229 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 12 - Forks: 1

CPScript/Memory-Manipulation

A lightweight memory manipulation framework

Language: C++ - Size: 43.9 KB - Last synced at: 4 days ago - Pushed at: 6 months ago - Stars: 3 - Forks: 0

lumlumsfury5/AskaLoader

Web-loader for executable files

Size: 2.93 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0

slezercc/antivirus-bypass

Fully undetectable bypass for every antivirus (FUD at the moment). Works by downloading a bat file that adds an exclusion for exe files, and then downloads your file and runs it.

Language: Batchfile - Size: 13.7 KB - Last synced at: 3 days ago - Pushed at: over 2 years ago - Stars: 36 - Forks: 15

DamonMohammadbagher/NativePayload_ReverseShell

This is Simple C# Source code to Bypass almost "all" AVS, (kaspersky v19, Eset v12 v13 ,Trend-Micro v16, Comodo & Windows Defender Bypassed via this method Very Simple)

Language: C# - Size: 9.77 KB - Last synced at: 12 days ago - Pushed at: about 2 years ago - Stars: 114 - Forks: 38

DamonMohammadbagher/NativePayload_BSSID

Transferring Backdoor Payload by BSSID and Wireless traffic

Language: Shell - Size: 86.7 MB - Last synced at: about 2 months ago - Pushed at: about 2 years ago - Stars: 58 - Forks: 42

machine1337/win-rat

A Fully Undectable RAT for Windows that bypass every kind of Antivirus Protections and will give u a CMD shell in your terminal

Language: Shell - Size: 163 KB - Last synced at: 20 days ago - Pushed at: almost 2 years ago - Stars: 48 - Forks: 12

Vazminz/ShellCode-Encrypt-Tool-Xor-Aes-Fud-Stable

RAT tools use shellcodes for remote access and system control. Shellcode injection and execution techniques bypass defenses, while red team tools focus on compiling and handling payloads for post-exploitation scenarios.

Language: C++ - Size: 314 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 1

Vazminz/ShellCode-Elevator-Uac-Bypass-Inject-Any-X64-fud

Shellcode development involves creating payloads for post-exploitation tasks like antivirus evasion and UAC bypass. Tools like shellcode loaders and injectors enable execution, while assembly and encoders ensure stealth on Windows systems.

Language: C++ - Size: 458 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 2 - Forks: 1

legendavip-2000/AskaLoader-zou

Web-loader for executable files

Size: 1000 Bytes - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0

d3ranged/sf2

Antivirus Signature Search Toolkit

Language: Python - Size: 1.88 MB - Last synced at: about 2 months ago - Pushed at: about 2 years ago - Stars: 80 - Forks: 8

arismelachroinos/lscript

The LAZY script will make your life easier, and of course faster.

Language: Shell - Size: 503 KB - Last synced at: about 2 months ago - Pushed at: almost 4 years ago - Stars: 4,199 - Forks: 1,085

DamonMohammadbagher/NativePayload_Image

Transferring Backdoor Payloads with BMP Image Pixels

Language: Shell - Size: 211 KB - Last synced at: 12 days ago - Pushed at: about 2 years ago - Stars: 82 - Forks: 37

machine1337/TelegramRAT

Cross Platform Telegram based RAT that communicates via telegram to evade network restrictions

Language: Python - Size: 11.7 KB - Last synced at: about 2 months ago - Pushed at: over 1 year ago - Stars: 380 - Forks: 64

Vasco0x4/ShadeLoader

ShadeLoader is a shellcode loader designed to bypass most antivirus software. 壳代码, 杀毒软件, 绕过

Language: C++ - Size: 23.4 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 40 - Forks: 4

HackerCalico/Magic_C2

Red Team C2 Framework with AV/EDR bypass capabilities.

Language: Python - Size: 10.6 MB - Last synced at: 2 months ago - Pushed at: 3 months ago - Stars: 407 - Forks: 65

SubGlitch1/OSRipper

AV evading OSX Backdoor and Crypter Framework

Language: Python - Size: 4.22 MB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 288 - Forks: 48

brosck/Condor

「🛡️」AVs/EDRs Evasion tool

Language: Python - Size: 510 KB - Last synced at: about 2 months ago - Pushed at: 8 months ago - Stars: 97 - Forks: 16

DamonMohammadbagher/eBook-BypassingAVsByCSharp

eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)

Size: 60.7 MB - Last synced at: about 2 months ago - Pushed at: about 2 years ago - Stars: 466 - Forks: 138

tokyoneon/Chimera

Chimera is a PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Language: PowerShell - Size: 5.78 MB - Last synced at: 2 months ago - Pushed at: over 3 years ago - Stars: 1,499 - Forks: 249

lengjibo/FourEye

AV Evasion Tool For Red Team Ops

Language: C - Size: 2.34 MB - Last synced at: 2 months ago - Pushed at: over 3 years ago - Stars: 762 - Forks: 152

stavroskasidis/BlazorWasmAntivirusProtection

Antivirus protection for Blazor Wasm projects

Language: C# - Size: 330 KB - Last synced at: 2 months ago - Pushed at: over 1 year ago - Stars: 65 - Forks: 13

jxy-s/herpaderping

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Language: C++ - Size: 22.8 MB - Last synced at: 2 months ago - Pushed at: about 2 years ago - Stars: 1,136 - Forks: 220

mandemadhubonnie3/AskaLoader-n4

Web-loader for executable files

Size: 2.93 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0

yutianqaq/AVEvasionCraftOnline

An online AV evasion platform written in Springboot (Golang, Nim, C) supports embedded, local and remote loading of Shellocde methods.

Language: Go - Size: 1.82 MB - Last synced at: about 2 months ago - Pushed at: about 1 year ago - Stars: 329 - Forks: 54

spicesouls/onelinepy

Python Obfuscator to generate One-Liners and FUD Payloads.

Language: Python - Size: 23.4 KB - Last synced at: 12 days ago - Pushed at: about 4 years ago - Stars: 163 - Forks: 34

gusar476/AskaLoader-c6

Web-loader for executable files

Size: 2.93 KB - Last synced at: 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0

umutcamliyurt/PythonSandboxEvasion

Language: Python - Size: 3.91 KB - Last synced at: 17 days ago - Pushed at: almost 4 years ago - Stars: 13 - Forks: 0

DamonMohammadbagher/NativePayload_DNS

C# code for Transferring Backdoor Payloads by DNS Traffic and Bypassing Anti-viruses

Language: C# - Size: 69.3 KB - Last synced at: 2 months ago - Pushed at: about 2 years ago - Stars: 270 - Forks: 100

machine1337/pycrypt

Python Based Crypter That Can Bypass Any Kinds Of Antivirus Products

Language: Python - Size: 5.86 KB - Last synced at: about 2 months ago - Pushed at: over 1 year ago - Stars: 348 - Forks: 65

HackerCalico/RAT_Obfuscator

Magical obfuscator, supports obfuscating EXE, BOF, and ShellCode.

Language: C++ - Size: 539 KB - Last synced at: about 2 months ago - Pushed at: 8 months ago - Stars: 153 - Forks: 13

DeepGamer1533/AskaLoader-4t

Web-loader for executable files

Size: 4.88 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

NtRaiseHardError/Antimalware-Research

Research on Anti-malware and other related security solutions

Language: C++ - Size: 45.8 MB - Last synced at: 12 days ago - Pushed at: almost 5 years ago - Stars: 259 - Forks: 73

doenerium69/doenerium

Fully Undetected Grabber (Grabs Wallets, Passwords, Cookies, Modifies Discord Client Etc.) Disclaimer: We are not responsible for any damages this software may cause after being acquired. This software was made for personal education and sandbox testing.

Language: JavaScript - Size: 4.39 MB - Last synced at: 2 months ago - Pushed at: about 2 years ago - Stars: 296 - Forks: 62

courteous-100pr/AskaLoader-4t

Web-loader for executable files

Size: 0 Bytes - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

machine1337/pyFUD

CROSS PLATFORM REMOTE ACCESS TROJAN (RAT)

Language: Python - Size: 13.7 KB - Last synced at: about 2 months ago - Pushed at: almost 2 years ago - Stars: 105 - Forks: 20

Malforge-Maldev-Public-Organization/Antivirus-Evasion-with-AES-Encryption

A proof-of-concept demonstrating static antivirus evasion using AES-encrypted shellcode in C. Includes encryption script in Python and a runtime decryption/execution mechanism in Windows.

Language: C - Size: 6.84 KB - Last synced at: about 1 month ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

machine1337/fudshell

An efficent Script To Generate FUD Persistent Reverse Shell For Red Teaming. Don't Upload Generated Stub On Virustotal

Language: Python - Size: 0 Bytes - Last synced at: 6 days ago - Pushed at: almost 2 years ago - Stars: 78 - Forks: 16

Hadi999/NXcrypt

NXcrypt - 'python backdoor' framework

Language: Python - Size: 49.8 KB - Last synced at: 2 months ago - Pushed at: about 8 years ago - Stars: 365 - Forks: 127

bonedaddy/escort

ssshh its a secret ;)

Language: PowerShell - Size: 158 KB - Last synced at: 3 months ago - Pushed at: over 3 years ago - Stars: 22 - Forks: 5

Kaorast/ShellCode-Encrypt-Tool-Xor-Aes-Fud-Stable

RAT tools use shellcodes for remote access and system control. Shellcode injection and execution techniques bypass defenses, while red team tools focus on compiling and handling payloads for post-exploitation scenarios.

Language: C++ - Size: 150 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

Kaorast/ShellCode-Elevator-Uac-Bypass-Inject-Any-X64-fud

Shellcode development involves creating payloads for post-exploitation tasks like antivirus evasion and UAC bypass. Tools like shellcode loaders and injectors enable execution, while assembly and encoders ensure stealth on Windows systems.

Language: C++ - Size: 190 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

doenerium69/doenerium-fixed

Fully Undetected Grabber (Grabs Wallets, Passwords, Cookies, Modifies Discord Client Etc.)

Language: JavaScript - Size: 4.33 MB - Last synced at: 3 months ago - Pushed at: 12 months ago - Stars: 73 - Forks: 14

PushpenderIndia/crypter

Crypter in Python 3 with advanced functionality, Bypass VM, Encrypt Source with AES & Base64 Encoding | Evil Code is executed by bruteforcing the decryption key, and then executing the decrypted evil code

Language: Python - Size: 87.9 KB - Last synced at: 2 months ago - Pushed at: over 3 years ago - Stars: 353 - Forks: 73

K3rnel-Dev/AskaLoader

Web-loader for executable files

Language: C# - Size: 1.1 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

bobby-tablez/Invoke-Junkpile

A PowerShell script obfuscator that is built to execute, not to be understood...

Language: Python - Size: 3.17 MB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 5 - Forks: 0

jacq-ue/Helius_Crypter

An advanced encryption toolkit with AES-256 file encryption, decryption, and PDF exploit generation features.

Language: TypeScript - Size: 124 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 0 - Forks: 0

siddhant385/pyhackthon

python reverse shell with gmail

Language: Python - Size: 111 KB - Last synced at: 3 months ago - Pushed at: 12 months ago - Stars: 16 - Forks: 1

Logan-Elliott/HollowGhost

Process hollowing C# shellcode runner that is FUD against Microsoft Defender as of October 7, 2023.

Language: C# - Size: 479 KB - Last synced at: 4 months ago - Pushed at: almost 2 years ago - Stars: 18 - Forks: 3

machine1337/fudransome

Generate FUD Ransomeware For Windows, Linux and MAC OS

Language: Python - Size: 1.95 KB - Last synced at: 3 months ago - Pushed at: almost 2 years ago - Stars: 22 - Forks: 4

bobby-tablez/IP-Obfuscator

Hide an IP address in scripts using hex/decimal/octal conversions

Language: PowerShell - Size: 187 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 66 - Forks: 10

scopx1/Crypter-Fud-Bypass-All-Antivuris-2025

Crypter Fud Bypass Antivirus Vbs Pass:123

Size: 4.21 MB - Last synced at: 2 months ago - Pushed at: 4 months ago - Stars: 0 - Forks: 0

efchatz/bypassing-av-detection

Bypassing antivirus detection: old-school malware, new tricks

Language: C++ - Size: 63.5 KB - Last synced at: 4 months ago - Pushed at: about 2 years ago - Stars: 58 - Forks: 9

tokyoneon/CredPhish

CredPhish is a PowerShell script designed to invoke legitimate credential prompts and exfiltrate passwords over DNS.

Language: PowerShell - Size: 300 KB - Last synced at: 3 months ago - Pushed at: almost 4 years ago - Stars: 293 - Forks: 45

tokyoneon/Armor

Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.

Language: Shell - Size: 347 KB - Last synced at: 2 months ago - Pushed at: almost 2 years ago - Stars: 280 - Forks: 57

yutianqaq/BypassAV-Online

An online AV evasion platform written in Springboot (Golang, Nim, C) supports inline, local and remote loading of Shellocde methods.

Language: Java - Size: 10.6 MB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 118 - Forks: 11

Felcenm/Apk-FUD-Crypter Fork of FUDCrypter-ue/Apk-Crypter

Android Apk FUD • Apk Crypter - t.me/TheCyberdemons • T.me/XVirtuo

Size: 1.7 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 0 - Forks: 0

GitHub topics: antivirus-evasion

hlldz/SpookFlare 📦

Felcenm/Apk-FUD-Crypter Fork of FUDCrypter-ue/Apk-Crypter

humzak711/Linux-process-injector-gdb-dlopen Fork of EthanTwofishBlackwell/SharedObject_Injector