Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices...
Adversary tradecraft detection, protection, and hunting
An Active Defense and EDR software to empower Blue Teams
EDR Lab for Experimentation Purposes
Awesome EDR Bypass Resources For Ethical Hacking
Enumerate and disable common sources of telemetry used by AV/EDR.
Evasive shellcode loader for bypassing event-based injection detection (PoC)
a tool to help operate in EDRs' blind spots
Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
Cobalt Strike script for ScareCrow payloads intergration (EDR/AV evasion)
#计算机科学#Owlyshield is an EDR framework designed to safeguard vulnerable applications from potential exploitation (C&C, exfiltration and impact).
Unlock the full brightness of the XDR display of your MacBook Pro
The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层驱动的开发、维护和兼容性问题,让其可以专注于业务开发
CSS trick/bug to display a brighter white by exploiting browsers' HDR capability and Apple's EDR system
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads