DefenderCheck
Defender flag checker
Identifies specific bytes in binary files flagged by Microsoft Defender as malicious
Identifies the bytes that Microsoft Defender flags on.
2k stars
43 watching
399 forks
Language: C#
last commit: about 1 year ago
Linked from 1 awesome list
csharpevasionresearch-tool
uhub/awesome-c-sharpRelated projects:
| Repository | Description | Stars |
|---|---|---|
 phackt/stager.dll | A tool that embeds known payloads to evade detection by Windows Defender | 170 |
 azure/microsoft-defender-for-cloud | Provides tools and resources for programmatically managing cloud security with Microsoft Defender | 1,704 |
 epi052/rustdsplit | Re-implements a method to bypass signature-based AV detection by splitting a file into two halves and modifying one byte in each half to evade detection. | 35 |
 s0md3v/striker | An offensive information and vulnerability scanner that identifies potential security issues in web applications | 2,234 |
 albuch/sbt-dependency-check | Automatically monitors dependencies for known vulnerabilities and generates reports on security issues | 266 |
 muellerberndt/mythril | Detects security vulnerabilities in smart contracts written in EVM bytecode. | 54 |
 ionescu007/specucheck | Utility to inspect CPU and hardware mitigations against specific security vulnerabilities. | 569 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |
 mobdk/core | A tool that bypasses Windows Defender to execute any binary converted to shellcode using system calls. | 43 |
 cylance/pypackerdetect | An executable detection tool using PE parsing and machine learning signatures to identify packed samples. | 29 |
 fkie-cad/cwe_checker | Automated binary analysis tool to detect common software vulnerabilities | 1,124 |
 nsmfoo/antivmdetection | A tool to create templates making VirtualBox VM detection harder | 712 |
 dafthack/msolspray | A tool that simulates password login attempts to Azure accounts, logging relevant information such as account status and error codes. | 911 |
 netspi/pesecurity | A PowerShell module to analyze Windows binary files for various security features and compilation settings. | 626 |
 b4rtik/hiddenpowershelldll | A PowerShell evasion tool that uses a DLL to bypass security measures and execute a hidden stager | 93 |