Alternatives and similar repositories for Qu1cksc0pe

Users that are interested in Qu1cksc0pe are comparing it to the libraries listed below

• alexandreborges / malwoverview

  View on GitHub
  Malwoverview is a rapid response tool used to gather intelligence information from VirusTotal, Hybrid Analysis, URLHaus, Polyswarm, Malsh…
  ☆3,531Jan 20, 2026Updated 3 weeks ago
• CERT-Polska / drakvuf-sandbox

  View on GitHub
  DRAKVUF Sandbox - automated hypervisor-level malware analysis system
  ☆1,263Updated this week
• matro7sh / BypassAV

  View on GitHub
  This map lists the essential techniques to bypass anti-virus and EDR
  ☆3,142Mar 28, 2025Updated 10 months ago
• kevoreilly / CAPEv2

  View on GitHub
  Malware Configuration And Payload Extraction
  ☆2,991Feb 6, 2026Updated last week
• mandiant / capa

  View on GitHub
  The FLARE team's open-source tool to identify capabilities in executable files.
  ☆5,821Updated this week
• Yamato-Security / hayabusa

  View on GitHub
  Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.
  ☆3,014Feb 4, 2026Updated last week
• last-byte / PersistenceSniper

  View on GitHub
  Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows…
  ☆2,048Dec 11, 2024Updated last year
• hasherezade / hollows_hunter

  View on GitHub
  Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks,…
  ☆2,310Oct 31, 2025Updated 3 months ago
• hasherezade / mal_unpack

  View on GitHub
  Dynamic unpacker based on PE-sieve
  ☆796Sep 13, 2025Updated 5 months ago
• blackorbird / APT_REPORT

  View on GitHub
  Interesting APT Report Collection And Some Special IOCs
  ☆2,889Updated this week
• 0xsp-SRD / mortar

  View on GitHub
  evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
  ☆1,495Dec 21, 2023Updated 2 years ago
• optiv / ScareCrow

  View on GitHub
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,869Aug 18, 2023Updated 2 years ago
• ahmedkhlief / APT-Hunter

  View on GitHub
  APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the …
  ☆1,400Nov 7, 2024Updated last year
• 0xrawsec / whids

  View on GitHub
  Open Source EDR for Windows
  ☆1,292Feb 25, 2023Updated 2 years ago
• OpenCTI-Platform / opencti

  View on GitHub
  Open Cyber Threat Intelligence Platform
  ☆8,212Updated this week
• Xacone / BestEdrOfTheMarket

  View on GitHub
  EDR Lab for Experimentation Purposes
  ☆1,409Jan 20, 2026Updated 3 weeks ago
• fastfire / deepdarkCTI

  View on GitHub
  Collection of Cyber Threat Intelligence sources from the deep and dark web
  ☆6,557Updated this week
• daem0nc0re / TangledWinExec

  View on GitHub
  PoCs and tools for investigation of Windows process execution techniques
  ☆953Feb 2, 2026Updated last week
• jstrosch / malware-samples

  View on GitHub
  Malware samples, analysis exercises and other interesting resources.
  ☆1,612Jan 13, 2024Updated 2 years ago
• netero1010 / EDRSilencer

  View on GitHub
  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the …
  ☆1,813Nov 3, 2024Updated last year
• BishopFox / sliver

  View on GitHub
  Adversary Emulation Framework
  ☆10,673Updated this week
• PaulNorman01 / Forensia

  View on GitHub
  Anti Forensics Tool For Red Teamers, Used For Erasing Footprints In The Post Exploitation Phase.
  ☆782Jun 23, 2023Updated 2 years ago
• ZeroMemoryEx / Terminator

  View on GitHub
  Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes
  ☆1,040Jun 20, 2023Updated 2 years ago
• WithSecureLabs / chainsaw

  View on GitHub
  Rapidly Search and Hunt through Windows Forensic Artefacts
  ☆3,440Oct 12, 2025Updated 4 months ago
• HavocFramework / Havoc

  View on GitHub
  The Havoc Framework
  ☆8,158Dec 18, 2025Updated last month
• mandiant / flare-floss

  View on GitHub
  FLARE Obfuscated String Solver - Automatically extract obfuscated strings from malware.
  ☆3,877Feb 3, 2026Updated last week
• S3cur3Th1sSh1t / WinPwn

  View on GitHub
  Automation for internal Windows Penetrationtest / AD-Security
  ☆3,639Aug 28, 2025Updated 5 months ago
• elastic / protections-artifacts

  View on GitHub
  Elastic Security detection content for Endpoint
  ☆1,372Feb 6, 2026Updated last week
• t3l3machus / Villain

  View on GitHub
  Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality…
  ☆4,331May 21, 2025Updated 8 months ago
• Mr-Un1k0d3r / EDRs

  View on GitHub
  ☆2,169Feb 21, 2023Updated 2 years ago
• bluecapesecurity / PWF

  View on GitHub
  Practical Windows Forensics Training
  ☆740Updated this week
• intelowlproject / IntelOwl

  View on GitHub
  IntelOwl: manage your Threat Intelligence at scale
  ☆4,451Updated this week
• lefayjey / linWinPwn

  View on GitHub
  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
  ☆2,149Updated this week
• montysecurity / C2-Tracker

  View on GitHub
  Live Feed of C2 servers, tools, and botnets
  ☆745Updated this week
• LETHAL-FORENSICS / MemProcFS-Analyzer

  View on GitHub
  MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
  ☆694Oct 22, 2025Updated 3 months ago
• Neo23x0 / Loki

  View on GitHub
  Loki - Simple IOC and YARA Scanner
  ☆3,719Jan 12, 2026Updated last month
• ION28 / BLUESPAWN

  View on GitHub
  An Active Defense and EDR software to empower Blue Teams
  ☆1,315Aug 10, 2023Updated 2 years ago
• t3l3machus / hoaxshell

  View on GitHub
  A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.
  ☆3,412Jan 19, 2025Updated last year
• mentebinaria / retoolkit

  View on GitHub
  Reverse Engineer's Toolkit
  ☆5,167May 1, 2025Updated 9 months ago