Pyramid is a set of Python scripts and module dependencies that can be used to evade EDRs. The main purpose…
Whids is a Open Source EDR For Windows with artifact collection driven by detection. The detection engine is built on…
ScareCrow is a payload creation framework for generating loaders for the use of side loading (not injection) into a legitimate…
SysWhispers helps with evasion by generating header/ASM files implants can use to make direct system calls. All core syscalls are…
BLUESPAWN helps blue teams monitor Windows systems in real-time against active attackers by detecting anomalous activity. We've created and open-sourced…