Table of Contents
Loading contents...
README.md
# LoaderGate
this loader is used to bypass the following top tier EDRs :
-
Palo Alto Crotex XDR
-
Sophos EDR
implemented in Csharp by @casp3r0x0 (Hassan Ali Al-khafaji)
Full blog post :
https://www.pwntricks.com/Bypass-CortexXDR-and-Sophos-EDR-like-real-red-teamer
I, the creator, am not responsible for any actions, and or damages, caused by this software.
You bear the full responsibility of your actions and acknowledge that this software was created for educational purposes only.
This software's main purpose is NOT to be used maliciously, or on any system that you do not own, or have the right to use.
By using this software, you automatically agree to the above.
Tool Information
Author
casp3r0x0
Project Added On
June 22, 2025
License
Open Source
Tags
Related Tools
NTDLLReflection
Bypass Userland EDR hooks by Loading Reflective Ntdll in memory from a remote server based on Windows ReleaseID to avoid opening a handle to ntdll , and trigger exported APIs from the export table
Stable
kernel-exploit-factory
Linux kernel CVE exploit analysis report and relative debug environment. You don't need to compile Linux kernel and configure your environment anymore.
Stable
NovaHypervisor
NovaHypervisor is a defensive x64 Intel host based hypervisor. The goal of this project is to protect against kernel based attacks (either via Bring Your Own Vulnerable Driver (BYOVD) or other means) by safeguarding defense products (AntiVirus / Endpoint Protection) and kernel memory structures and preventing unauthorized access to kernel memory.
Stable