所有收集类项目

Anti-AV

跟杀软和免杀有关的资料，当前包括200+工具和1300+文章，根据功能进行了粗糙的分类
相关内容，在有关Payload、Shellcode、混淆、PowerShell、隐写、注入、远控收集里
English Version

veil -> (5)工具 (41)文章
ASWCrypter -> (1)工具
AVIator -> (1)工具 (1)文章
Avet -> (2)工具 (14)文章
Avoidz -> (1)工具
BDF -> (2)工具 (13)文章
CACTUSTORCH -> (3)工具 (6)文章
DKMC -> (1)工具 (3)文章
GreatSCT -> (1)工具 (2)文章
Green-Hat-Suite -> (1)工具
HERCULES -> (1)工具 (8)文章
Python-Rootkit -> (1)工具
SharpShooter -> (1)工具 (18)文章
SpookFlare -> (1)工具 (2)文章
TheFatRat -> (2)工具 (8)文章
Venom -> (6)工具 (8)文章
Winpayloads -> (1)工具 (4)文章
nps_payload -> (2)工具 (3)文章
zirikatu -> (1)工具 (1)文章
unicorn -> (1)工具
Shellter -> (17)文章
dr0p1t -> (1)工具 (3)文章
phantom -> (1)工具 (1)文章
morphaes -> (1)工具 (1)文章
unibyav -> (1)工具
armor -> (1)工具
foolav -> (2)工具 (2)文章
Inception -> (1)工具
CarbonCopy -> (1)工具
metasploitavevasion -> (1)工具
SideStep -> (1)工具 (1)文章
nativepayload_dns -> (1)工具
HackTheWorld -> (1)工具
Salsa-tools -> (1)工具
mcreator -> (1)工具
杀毒软件
- ClamAV -> (18)工具 (45)文章
- phpmussel -> (1)工具
- AntiSpy -> (1)工具 (2)文章
- TinyAntivirus -> (1)工具
- yourav -> (1)工具
- Armadito -> (3)工具
- kicomav -> (1)工具
- (7) 工具
白利用
- (11) 文章-白利用
- (3) 文章-白加黑
- (40) 文章-LOLBins
SysWhispers -> (1)文章
工具
- (2) 资源收集
- (120) 新添加
文章
- (291) 新添加
- Msfvenom
- (346) AntiVirus
- (360) 杀软/杀毒/杀
- (7) 远控免杀从入门到实践
- (18) 恶意代码
- (10) webshell

veil

工具

[1900星][4m] [Py] veil-framework/veil 生成免杀的Metasploit Payload
[1515星][11d] [Py] veil-framework/veil-evasion 一种用于生成metasploit有效负载的工具，它绕过了常用的反病毒解决方案
[75星][5y] [PS] cheetz/powertools Veil's PowerTools are a collection of PowerShell projects with a focus on offensive operations.
[73星][8m] [Py] veil-framework/veil-catapult Veil Catapult is no longer supported
[63星][5y] [Py] veil-framework/veil-ordnance Veil-Ordnance is a tool designed to quickly generate MSF stager shellcode

文章

ASWCrypter

工具

[273星][2y] [Shell] abedalqaderswedan1/aswcrypter An Bash&Python Script For Generating Payloads that Bypasses All Antivirus so far [FUD]

AVIator

工具

[329星][6m] [C#] ch0pin/aviator Antivirus evasion project

文章

Avet

工具

[1095星][11d] [C] govolution/avet 免杀工具
[3星][1y] [C] govolution/avetosx AntiVirus Evasion Tool

文章

Avoidz

工具

[119星][12d] [Ruby] m4sc3r4n0/avoidz Avoidz tool to bypass most A.V softwares

BDF

工具

[2475星][14d] [Py] secretsquirrel/the-backdoor-factory 为PE, ELF, Mach-O二进制文件添加Shellcode后门
[788星][3y] [Py] secretsquirrel/bdfproxy Patch Binaries via MITM: BackdoorFactory + mitmProxy. (NOT SUPPORTED)

文章

CACTUSTORCH

工具

[598星][3y] [Visual Basic .NET] mdsecactivebreach/cactustorch Payload Generation for Adversary Simulations
[108星][3y] [Shell] xillwillx/cactustorch_ddeauto OFFICE DDEAUTO Payload Generation script
[51星][12d] [Visual Basic] vysecurity/cactustorch Payload Generation for Adversary Simulations

文章

DKMC

工具

[761星][1y] [Py] mr-un1k0d3r/dkmc DKMC - Dont kill my cat - Malicious payload evasion tool

文章

GreatSCT

工具

[778星][2y] [Py] greatsct/greatsct 生成绕过常见防病毒解决方案和应用程序白名单解决方案的metasploit payload

文章

Green-Hat-Suite

工具

[107星][12d] [Ruby] green-m/green-hat-suite Green-hat-suite is a tool to generate meterpreter/shell which could evade antivirus.

HERCULES

工具

[471星][3y] [Go] egebalci/hercules HERCULES is a special payload generator that can bypass antivirus softwares.

文章

Python-Rootkit

工具

[310星][13d] [Py] 0xislamtaha/python-rootkit Python远控，用于获取Meterpreter会话

SharpShooter

工具

[898星][1y] [Visual Basic .NET] mdsecactivebreach/sharpshooter Payload Generation Framework

文章

SpookFlare

工具

[780星][1y] [Py] hlldz/spookflare Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.

文章

TheFatRat

工具

[3659星][3m] [C] screetsec/thefatrat 大规模漏洞利用工具
[20星][4y] [C] exploit-install/thefatrat An easy tool to generate backdoor with msfvenom (a part from metasploit framework). This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software protection

文章

Venom

工具

[1192星][9d] yzddmr6/webshell-venom 免杀webshell无限生成工具(利用随机异或无限免杀D盾)
[637星][7d] [Shell] r00t-3xp10it/venom shellcode 生成器、编译器、处理器(metasploit)
[273星][11d] [JS] yzddmr6/as_webshell_venom 免杀webshell无限生成工具蚁剑版
[122星][14d] [Py] wetw0rk/malicious-wordpress-plugin 生成带反向 Shell 的 wordpress 插件
[100星][26d] [Py] lockedbyte/cryptovenom Cryptovenom: The Cryptography Swiss Army Knife
[8星][28d] [Shell] manofftoday/venomdroid3 Script that easily creates, signs and AV bypass .apk metasploit reverse_tcp payload.

文章

Winpayloads

工具

[1093星][11m] [Py] nccgroup/winpayloads Undetectable Windows Payload Generation

文章

nps_payload

工具

[331星][12d] [Py] trustedsec/nps_payload Python 脚本，生成能够绕过基础入侵检测的 payload
[32星][2m] [Py] fsacer/nps_payload This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several different sources. Written by Larry Spohn (

文章

zirikatu

工具

[136星][3y] [Shell] pasahitz/zirikatu Fud Payload generator script

文章

unicorn

工具

[2209星][4m] [Py] trustedsec/unicorn 通过PowerShell降级攻击, 直接将Shellcode注入到内存

Shellter

文章

dr0p1t

工具

[1034星][2y] [Py] d4vinci/dr0p1t-framework 创建免杀的Dropper

文章

phantom

工具

[778星][4m] [Py] oddcod3/phantom-evasion 一个用python编写的防病毒规避工具(与python和python3兼容)，能够生成(几乎)完全不可检测的可执行文件，即使是使用最常见的x86 msfvenom负载。

文章

morphaes

工具

[262星][2y] [Py] cryptolok/morphaes 多态shellcode引擎，具有变态特性并能够绕过沙箱，绕过IDPS检测

文章

unibyav

工具

[195星][2y] [Py] mr-un1k0d3r/unibyav a simple obfuscator that take raw shellcode and generate executable that are Anti-Virus friendly.

armor

工具

[186星][2y] [Shell] tokyoneon/armor Armor is a simple Bash script designed to create encrypted macOS payloads capable of evading antivirus scanners.

foolav

工具

[177星][1m] [C] hvqzao/foolav Pentest tool for antivirus evasion and running arbitrary payload on target Wintel host
[87星][2m] [C] hvqzao/foolavc foolav successor - loads DLL, executable or shellcode into memory and runs it effectively bypassing AV

文章

Inception

工具

[307星][2y] [Py] two06/inception Provides In-memory compilation and reflective loading of C# apps for AV evasion.

CarbonCopy

工具

[708星][12m] [Py] paranoidninja/carboncopy A tool which creates a spoofed certificate of any online website and signs an Executable for AV Evasion. Works for both Windows and Linux

metasploitavevasion

工具

[239星][12d] [Shell] nccgroup/metasploitavevasion Metasploit AV Evasion Tool

SideStep

工具

[112星][3y] [C++] codewatchorg/sidestep Yet another AV evasion tool

文章

nativepayload_dns

工具

[207星][2y] [C#] damonmohammadbagher/nativepayload_dns 使用DNS流量传输Payload，绕过杀软。C#编写

HackTheWorld

工具

[328星][2y] [Py] stormshadow07/hacktheworld An Python Script For Generating Payloads that Bypasses All Antivirus so far .

Salsa-tools

工具

[322星][3m] [C#] hackplayers/salsa-tools ShellReverse TCP/UDP/ICMP/DNS/SSL/BINDTCP/Shellcode/SILENTTRINITY and AV bypass, AMSI patched

mcreator

工具

[139星][12d] [Py] blacknbunny/mcreator 反向Shell生成器, 自带AV绕过技术

杀毒软件

ClamAV

[1064星][10d] [C++] cisco-talos/clamav-devel 开源AV引擎ClamAV
[409星][11d] cisco-talos/clamav-faq ClamAV FAQ
[354星][15d] [Shell] extremeshok/clamav-unofficial-sigs ClamAV Unofficial Signatures Updater maintained by eXtremeSHOK.com
[266星][17d] [Shell] essandess/macos-fortress Firewall and Privatizing Proxy for Trackers, Attackers, Malware, Adware, and Spammers with Anti-Virus On-Demand and On-Access Scanning (PF, squid, privoxy, hphosts, dshield, emergingthreats, hostsfile, PAC file, clamav)
[86星][11d] [Dockerfile] mko-x/docker-clamav Dockerized open source antivirus for use with file sharing containers, REST API or TCP.
[81星][17d] [Py] momika233/clamav_0day_exploit ClamAV_0Day_exploit
[60星][12d] [Ruby] kobaltz/clamby ClamAV interface to your Ruby on Rails project.
[43星][7y] [Py] sketchymoose/totalrecall Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to find badness.
[38星][2m] [C++] cisco-talos/clamav-bytecode-compiler ClamAV ByteCode Compiler
[35星][2y] [Py] cisco-talos/casc 在IDA的反汇编和字符串窗口中, 辅助创建ClamAV NDB 和 LDB签名
[33星][4m] [Perl] tripflex/cpsetup Intuitive bash/shell script to setup and harden/configure cPanel CentOS/RHEL server with ConfigServer Firewall, MailManage, MailQueue, Malware Detect, ClamAV, mod_cloudflare, CloudFlare RailGun, and many more applications and security tweaks
[28星][6m] brandonprry/clamav-fuzz A fuzz job for ClamAV
[23星][24d] geerlingguy/ansible-role-clamav Ansible Role - ClamAV.
[11星][1y] [C#] rmuch/clamav.managed ClamAV bindings for the .NET Framework, Mono and PowerShell. ClamAV.Managed is a library written in C# for the .NET Framework and Mono, providing managed bindings for the libclamav interface. It includes ClamAV.Managed.PowerShell, a set of PowerShell cmdlets for ClamAV scanning. It comes with sample code for building a GUI virus scanner applicat…
[10星][3m] [Py] abhinavbom/clara Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets
[9星][1y] [Go] monostream/muescheli A simple AntiVirus-as-a-Service implementation using ClamAV
[4星][1y] [Py] hestat/clamav-cortexanalyzer Analyzer for TheHive Cortex Soc platform. Allows you to run observables against default and custom ClamAV rules.
[2星][1m] [Ruby] simp/pupmod-simp-clamav The SIMP clamav Puppet Module

phpmussel

[312星][13d] [PHP] phpmussel/phpmussel PHP-based anti-virus anti-trojan anti-malware solution.

AntiSpy

[717星][15d] [C] mohuihui/antispy AntiSpy is a free but powerful anti virus and rootkits toolkit.It offers you the ability with the highest privileges that can detect,analyze and restore various kernel modifications and hooks.With its assistance,you can easily spot and neutralize malwares hidden from normal detectors.

TinyAntivirus

[296星][3y] [C++] develbranch/tinyantivirus TinyAntivirus is an open source antivirus engine designed for detecting polymorphic virus and disinfecting it.

yourav

[493星][3y] [C#] tlaster/yourav 宇宙级最轻量杀毒软件

Armadito

[166星][30d] [C] armadito/armadito-av Armadito antivirus main repository
[10星][1y] [PHP] armadito/armadito-glpi Plugin Armadito for GLPI
[5星][1y] [JS] armadito/deprecated-web-ui Deprecated Armadito web user interface

kicomav

[197星][12d] [Py] hanul93/kicomav KicomAV is an open source (GPL v2) antivirus engine designed for detecting malware and disinfecting it.

工具

[335星][14d] [Java] widdix/aws-s3-virusscan S3 Buckets反病毒
[107星][2y] [C] formyown/alesense-antivirus 一款拥有完整交互界面与驱动级拦截能力的开源杀毒软件
[33星][3y] [Py] jkkj93/mint-webshell-defender 薄荷WEBSHELL防御系统，是一款WEBSHELL查杀/防御软件，采用PYTHON编写
[26星][4y] [Java] whyalwaysmea/mobilesafe 这是一个android版的手机卫士，包含一下功能：1.手机防盗 2. 黑名单设置 3.软件管理 4.进程管理 5.流量统计 6.缓存清理 7.手机杀毒 8.来电归属地显示 9.号码归属地查询 10.程序锁
[12星][4y] [C++] majian55555/mjantivirusengine Anti-virus engine in Windows using VC++ 6.0 and MFC. We applied windows multithreading in virus scan method and user interface. Using MFC encapsulated threads library and Win32 APIs as well.
[9星][5m] [VBScript] zelon88/hr-av A fully original Windows anti-virus client from HonestRepair using the same custom antivirus engine as our Cloud.
[1星][2y] zhiyuanwang-chengdu-qihoo360/superantispyware_poc SUPERAntiSpyware CVE

白利用

文章-白利用

文章-白加黑

文章-LOLBins

SysWhispers

文章

工具

资源收集

[564星][1y] [ASP] landgrey/webshell-detect-bypass 绕过专业工具检测的Webshell研究文章和免杀的Webshell
[465星][3m] [C#] tidesec/bypassantivirus 远控免杀系列文章及配套工具，搜集汇总了互联网上的几十种免杀工具和免杀方法，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

新添加

[1436星][4m] [Py] ekultek/whatwaf 检测并绕过WAF和保护系统
[973星][2y] [Py] trycatchhcf/cloakify 数据外泄、渗透一目了然;使用基于文本的隐写术将任何文件类型转换为日常字符串列表;DLP/MLS设备，失效数据白名单控制，分析师的社会工程，规避AV检测
[507星][4m] [Go] cbeuw/cloak A censorship circumvention tool to evade detection against state adversaries
[442星][8d] [Assembly] jthuraisamy/syswhispers AV/EDR evasion via direct system calls.
[435星][7d] [PS] the-xentropy/xencrypt A PowerShell script anti-virus evasion tool
[298星][12m] [YARA] supportintelligence/icewater YARA rules for the detection of malware and malicious files. the anti-virus industry prefers names for a threat
[220星][3y] [C++] bee13oy/av_kernel_vulns Pocs for Antivirus Software‘s Kernel Vulnerabilities
[196星][14d] [Smali] sslab-gatech/avpass Tool for leaking and bypassing Android malware detection system
[187星][10d] [Py] tijme/angularjs-csti-scanner Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.
[182星][3y] [PHP] lcatro/php-webshell-bypass-waf 分享PHP WebShell 绕过WAF 的一些经验
[177星][3y] [Py] arno0x/shellcodewrapper 支持多种语言的Shellcode包装器，支持编码/加密。可用于绕过杀软
[175星][30d] [Go] vyrus001/go-mimikatz A wrapper around a pre-compiled version of the Mimikatz executable for the purpose of anti-virus evasion.
[173星][16d] [Py] rvn0xsy/cooolis-ms Cooolis-ms is a server that supports the Metasploit Framework RPC. It is used to work with the Shellcode and PE loader. To some extent, it bypasses the static killing of anti-virus software, and allows the Cooolis-ms server to communicate with the Metasploit server. Separation.
[144星][11d] [C++] ajayrandhawa/keylogger Keylogger is 100% invisible keylogger not only for users, but also undetectable by antivirus software. Blackcat keylogger Monitors all keystokes, Mouse clicks. It has a seperate process which continues capture system screenshot and send to ftp server in given time.
[135星][3m] [C++] huoji120/antivirus_r3_bypass_demo 分别用R3的0day与R0的0day来干掉杀毒软件
[131星][2y] [Py] cisco-talos/bass 从先前生成的恶意软件集群的样本中自动生成AV签名
[118星][30d] [C] govolution/avepoc 一些免杀的 poc
[116星][21d] [C#] p0cl4bs/hanzoinjection injecting arbitrary codes in memory to bypass common antivirus solutions
[106星][14d] [Shell] jbreed/apkwash Android APK Antivirus evasion for msfvenom generated payloads.
[100星][1y] [C] kirillwow/ids_bypass 入侵检测系统(IDS)绕过PoC
[100星][4y] [Py] ym2011/scanbackdoor Webshell扫描工具，通过各种规则和算法实现服务器脚本后门查杀
[99星][29d] [Go] asche910/flynet A powerful TCP/UDP tool, which support socks5 proxy by tcp and udp, http proxy and NAT traversal. This tool can help you bypass gfw easily
[89星][11d] [Py] k8gege/scrun BypassAV ShellCode Loader (Cobaltstrike/Metasploit)
[85星][1m] [Py] llsourcell/antivirus_demo Antivirus Demo for Fresh Machine Learning #7
[82星][4y] [HTML] vah13/avdetection A simple way for detection the remote user's antivirus
[76星][2m] [Go] maliceio/malice-av Malice AntiVirus Plugins
[72星][4y] [Py] monnappa22/hollowfind a Volatility plugin to detect different types of process hollowing techniques used in the wild to bypass, confuse, deflect and divert the forensic analysis techniques
[71星][5y] [Py] robbyfux/ragpicker Ragpicker is a Plugin based malware crawler with pre-analysis and reporting functionalities. Use this tool if you are testing antivirus products, collecting malware for another analyzer/zoo.
[68星][4m] [PHP] marcocesarato/php-antimalware-scanner AMWSCAN (Antimalware Scanner) is a php antimalware/antivirus scanner console script written in php for scan your project. This can work on php projects and a lot of others platform.
[65星][10d] [PHP] thekingofduck/bypassavaddusers 绕过杀毒软件添加用户
[64星][6y] [Py] andrew-morris/stupid_malware Python malware for pentesters that bypasses most antivirus (signature and heuristics) and IPS using sheer stupidity
[64星][2m] [Py] az0ne/python_backdoor 过360主动防御360杀毒以前99%杀软的python后门
[63星][17d] [C#] two06/amsi_handler Automate AV evasion by calling AMSI
[60星][4y] [Batchfile] ayra/zipbomb About an old technology that still screws up some anti virus software
[59星][5m] [JS] evyatarmeged/humanoid Node.js package to bypass CloudFlare's anti-bot JavaScript challenges
[56星][3y] [Py] ahm3dhany/ids-evasion Evading Snort Intrusion Detection System.
[56星][2y] [C++] huoji120/av-killer Antivirus Killer
[56星][14d] [C#] damonmohammadbagher/nativepayload_reverseshell This is Simple C# Source code to Bypass almost "all" AVS, (kaspersky v19, Eset v12 v13 ,Trend-Micro v16, Comodo & Windows Defender Bypassed via this method Very Simple)
[52星][2m] [C] stonedreamforest/re_avkmgr 逆向小红伞杀毒软件驱动——avkmgr
[46星][30d] [Shell] jbreed/apkinjector Android APK Antivirus evasion for msfvenom generated payloads to inject into another APK file for phishing attacks.
[45星][1m] [Shell] rordi/docker-antivirus Docker antivirus & malware scanning (antivirus as a microservice / antivirus as a container)
[44星][9m] [HTML] unk9vvn/andtroj A tool for integrating the Metasploit payload with Android's healthy programs and bypassing antivirus
[42星][15d] [Py] hackedteam/test-av2 Automated antivirus test environment (new version)
[42星][4m] [C#] ryuzakih/cloudflaresolverre Cloudflare Javascript & reCaptcha challenge (I'm Under Attack Mode or IUAM) solving / bypass .NET Standard library.
[41星][9y] [C++] cr4sh/ptbypass-poc Bypassing code hooks detection in modern anti-rootkits via building faked PTE entries.
[41星][3m] [C++] hackshields/antivirus
[41星][4m] [C] ntraiseharderror/antihook PoC designed to evade userland-hooking anti-virus.
[40星][25d] [PS] curtbraz/invoke-neutralizeav Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting
[39星][23d] [Py] joxeankoret/tahh Source codes for "The Antivirus Hackers Handbook" book.
[37星][24d] [JS] truework/lambda-s3-antivirus Lambda Function to scan incoming S3 uploads by Truework
[36星][15d] [Py] hackedteam/test-av Automated antivirus test environment
[34星][2y] [C#] damonmohammadbagher/nativepayload_arp C# code for Transferring Backdoor Payloads by ARP Traffic and Bypassing Anti-viruses (Slow)
[33星][3y] [Shell] b3rito/trolo trolo - an easy to use script for generating Payloads that bypasses antivirus
[27星][4m] [HTML] rafaybaloch/sop-bypass-mini-test-suite This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing Same Origin Policy bypass issues with browsers. Due credits were given to the researchers whose Proof of concepts have been incorporated in this test suite. Please note that, this is just the beta version, the n…
[26星][24d] [C] devilogic/xvirus 一个早期的抗启发式查杀的WIN32免杀壳
[26星][10m] [C] souhailhammou/panda-antivirus-lpe The exploit for Panda AV LPE
[25星][2y] [C#] damonmohammadbagher/nativepayload_ip6dns C# code for Transferring Backdoor Payloads by IPv6 Address (AAAA) records and DNS Traffic also Bypassing Anti-viruses
[25星][5m] [C] visweswaran1998/cybergod-ksgmprh An open-source antivirus for windows
[24星][2m] [PHP] 3xp10it/xwebshell 免杀webshell集合
[23星][4y] [Py] d4vinci/anti_killer Kill Any Antivirus Using Python For Windows Users .
[23星][7m] [C#] lockfale/dotnetavbypass-master C# AV bypass jank
[21星][2m] [C] sanseolab/simpleavdriver Simple AntiVirus Driver example
[20星][14d] [PHP] pluginkollektiv/antivirus Useful plugin that will scan your theme templates for malicious injections. Automatically. Every day. For more blog security.
[20星][17d] ajayrandhawa/auto-screen-catpure It is primary designed to be hidden and monitoring the computer activity. Take a screenshot of desktop in hidden mode using Visual C++ and save automatically to 'jpeg' file in every 30 second. 60+ Most Popular antivirus not detect this application while it is running on background.
[19星][25d] [C] credativ/pg_snakeoil The PostgreSQL Antivirus #pgSnakeOil
[18星][6m] [C] visweswaran1998/mrida An opensource antivirus implementation - Successor of CyberGod KSGMPRH
[17星][13d] [HTML] fmind/euphony Harmonious Unification of Cacophonous Anti-Virus Vendor Labels for Android Malware
[17星][9m] [Java] wh1t3p1g/monitorclient 网站实时监控文件变动及webshell检测查杀工具
[15星][4m] [PHP] mahi2/befree Website Security, Antivirus & Firewall || a powerful application that can secure your website against hackers, attacks and other incidents of abuse
[15星][3y] payatu/quickheal CVE-2017-5005 for Quick Heal Antivirus
[15星][1m] [C] stonedreamforest/re_avdevprot 逆向小红伞杀毒软件驱动——avdevprot
[15星][12m] [PHP] tengzhangchao/maskfindshell linux下webshell查杀工具
[15星][3m] [C] zzy590/basiclibpp A powerful library for inline-hook,lock,compress etc,and it is useful for anti-virus software.
[15星][12d] [JS] rubaljain/frida-jb-bypass Frida script to bypass the iOS application Jailbreak Detection
[12星][1y] [Py] huseck/scan_kill_php_shell 针对PHP网马的正则查杀
[12星][16d] [Go] malice-plugins/windows-defender Malice Windows Defender AntiVirus Plugin
[12星][2m] [C] serializingme/emofishes Emofishes is a collection of proof-of-concepts that help improve, bypass or detect virtualized execution environments (focusing on the ones setup for malware analysis).
[11星][2m] behzadmagzer/epcrypter A Tool For Crypt File And Bypass AntiVirus Even msfvenom Payloads
[11星][16d] [Py] tanc7/dark-lord-obama AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities
[10星][2y] [C#] arunvnnk/avbypass Techniques that i have used to evade anti-virus during pen tests.
[8星][5y] [C++] hkhk366/memory_codes_injection Inject codes to another process to watch and operate other process. This is usually used as anti-virus software.
[8星][6m] [Py] nikhilraghava/ml-antivirus An antivirus powered by machine learning.
[8星][1y] [Py] xedtech/ceriumav Project Cerium Antivirus
[8星][3m] [C#] fashionproof/uglyexe UglyEXe - bypass some AVs
[7星][2m] [C] idigitalflame/inyourmems Windows Antivirus Evasion and Memory Injection
[7星][2y] zhiyuanwang-chengdu-qihoo360/malwarebytes_poc Malwarebytes Antivirus CVE
[7星][7m] [JS] ecstatic-nobel/not-anti-virus An attmept to block malware before AV scans it.
[6星][10m] [Ruby] duke-libraries/ddr-antivirus Antivirus service wrapper
[6星][1y] 0x4xleakr/darkcrypter DarkCrypter encrypts your files and generates undetectable payloads to evade all anti-virus vendors.
[5星][2y] [Perl] armadito/armadito-agent Armadito Agent for Antiviruses management
[5星][8m] [Py] henriksb/virustotalscanner Scan suspicious applications with over 60 different anti-viruses with a mere two clicks and five seconds!
[5星][12m] [Go] malice-plugins/kaspersky Malice Kaspersky Antivirus Plugin
[4星][3m] [Py] technowlogy-pushpender/apkinfector Advanced Android AV Evasion Tool Written In Python 3 that can Embed/Bind meterpreter APK to any Legitimate APK
[4星][4m] [PHP] guardiran/cloudhound CloudHound is a cloudflare bypass tool which is using several methods such as DNS history Checkup, Cross-Site port Attack and etc to detect original Server's IP
[3星][2y] [JS] cranic/node-virus EICAR testing signature for anti-virus testing purpouses.
[3星][3m] [Java] gabriellhuver/baafjava Metasploit powershell exec in java, bypass any antivirus. You can enter the url .txt powershell payload script, and the jar download and exec this on the victim pc.
[3星][1y] [Go] malice-plugins/mcafee Malice McAfee AntiVirus Plugin
[3星][2y] [HTML] raikar/attack-docs This repo contains comprehensive lists of attack payloads known to cause issues like OS command injection, directory listings, directory traversals, source exposure, file upload bypass, authentication bypass, http header crlf injections, and more
[2星][2y] [C++] k0keoyo/vir.it-explorer-anti-virus-null-pointer-reference-poc
[2星][2y] kernelm0de/cve-2018-8090 DLL Hijacking in Quickheal Total Security/ Internet Security/ Antivirus Pro (Installers)
[2星][5m] [Py] mado-95/madcrypt Simple script that strips/compresses/signs any PE in an effort to lower antivirus detection ratio.
[2星][3m] rubyfly/k7antivirus_poc K7AntiVirus_POC
[2星][2y] [C] sqdwr/deletefilebycreateirp 通过创建Irp删除文件，代码抄袭自某杀毒软件*86部分，因此可以看到IDA痕迹
[2星][2y] zhiyuanwang-chengdu-qihoo360/escanav_poc escanAntivirus CVE
[2星][2y] zhiyuanwang-chengdu-qihoo360/k7_antivirus_poc K7 Antivirus CVE
[1星][7y] [Py] daveclowe/mcbup Python script which converts McAfee quarantine files back to their native format, generates an MD5 hash, and queries the VirusTotal API for antivirus scan results.
[1星][2y] [Java] pnfsoftware/jeb2-plugin-avqu JEB Plugin Extractor for Anti-Virus Quarantine files
[1星][3y] [Java] sanjeet990/android-antivirus-project This is an Antivirus project for Android that I created for my college project.
[1星][4y] [Java] sushanthikshwaku/antiv Anti virus app for android using VirusTotal
[1星][2y] zhiyuanwang-chengdu-qihoo360/jiangmin_antivirus_poc Jiangmin_Antivirus_CVE
[1星][2y] zhiyuanwang-chengdu-qihoo360/maxsecureantivirus_poc MaxSecureAntivirus CVE
[1星][2y] zhiyuanwang-chengdu-qihoo360/nprotectantivirus_poc nProtectAntivirus_CVE
[1星][2y] zhiyuanwang-chengdu-qihoo360/zillyaantivirus_poc ZillyaAntivirusCVE
[0星][2y] d0nemkj/poc_bsod Antivirus software's BSOD poc
[0星][2y] [C++] mmmxny/k7-antivirus
[0星][2y] eonrickity/cve-2017-0213 Fixed No Virus Manual Automatic Loader exe no zip because zip picks up the anti virus detector.
[0星][4m] [Py] giacomoferro/antivirus-detection-analysis Software Security project - Malware Detection Analysis A.A. 2019/2020.
[None星][C#] med0x2e/noamci Using DInvoke to patch AMSI.dll in order to bypass AMSI detections triggered when loading .NET tradecraft via Assembly.Load().
[None星]hack2fun/bypassav Cobalt Strike插件，用于快速生成免杀的可执行文件
[None星][C] reddyyz/ghostshell Malware indetectable, with AV bypass techniques, anti-disassembly, etc.

文章

新添加

Msfvenom

AntiVirus

杀软/杀毒/杀

远控免杀从入门到实践

恶意代码

webshell

贡献

内容为系统自动导出, 有任何问题请提issue

alphaSeclab/anti-av

alphaSeclab

Reviews

Repository Details

所有收集类项目

Anti-AV

目录

veil

工具

文章

ASWCrypter

工具

AVIator

工具

文章

Avet

工具

文章

Avoidz

工具

BDF

工具

文章

CACTUSTORCH

工具

文章

DKMC

工具

文章

GreatSCT

工具

文章

Green-Hat-Suite

工具

HERCULES

工具

文章

Python-Rootkit

工具

SharpShooter

工具

文章

SpookFlare

工具

文章

TheFatRat

工具

文章

Venom

工具

文章

Winpayloads

工具

文章

nps_payload

工具

文章

zirikatu

工具

文章

unicorn

工具

Shellter

文章

dr0p1t

工具

文章

phantom

工具

文章

morphaes

工具

文章

unibyav

工具

armor

工具

foolav

工具

文章