#

ppl-bypass

Here are 3 public repositories matching this topic...

andreisss / KslDump

KslDump — Why bring your own knife when Defender already left one in the kitchen?

offensive-security hacking-tool redteaming redteam purpleteam purple-team lsass redteam-tools byovd runasppl lsass-dump mimikatz-alternative ppl-bypass

Updated Apr 13, 2026
Python

0xsh3llf1r3 / ColdWer

Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass

offensive-security cobalt-strike red-team bof av-bypass windows-security credential-dumping edr-bypass edr-evasion beacon-object-file lsass-dump edr-freeze ppl-bypass

Updated Jan 29, 2026
C

Rakum713 / ColdWer

🥶 Freeze EDR/AV processes with ColdWer, using WerFaultSecure.exe PPL bypass to extract LSASS memory on modern Windows systems.

offensive-security cobalt-strike red-team bof av-bypass windows-security credential-dumping edr-bypass edr-evasion beacon-object-file lsass-dump edr-freeze ppl-bypass

Updated Apr 29, 2026
C

Improve this page

Add a description, image, and links to the ppl-bypass topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the ppl-bypass topic, visit your repo's landing page and select "manage topics."