Alternatives and similar repositories for raw-disk-parser

Users that are interested in raw-disk-parser are comparing it to the libraries listed below

• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆100Updated 7 months ago
• OtterHacker / Hooker
  ☆106Updated last year
• whokilleddb / sinister-vsix
  Blog/Journal on how to backdoor VSCode extensions
  ☆76Updated 5 months ago
• dis0rder0x00 / stillepost
  Using Chromium-based browsers as a proxy for C2 traffic.
  ☆137Updated last month
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 5 months ago
• Semperis / SAMLSmith
  ☆95Updated 5 months ago
• 0xthirteen / reg_snake
  Python tool to interact with WMI StdRegProv
  ☆60Updated last year
• Teach2Breach / schtask
  Rust implementation, creating a scheduled task programmatically with user logon trigger.
  ☆47Updated 7 months ago
• zarkones / BloodfangC2
  Modern PIC implant for Windows (64 & 32 bit)
  ☆105Updated 5 months ago
• dmcxblue / Claude-C2
  Utilizng an MCP Server to communicate with your C2
  ☆86Updated 8 months ago
• 0xTriboulet / ai-postex
  Proof-of-concept implementation of AI-enabled postex DLLs
  ☆53Updated 4 months ago
• 0xRedpoll / SignalKeyBOF
  BOF to decrypt Signal Desktop chat logs
  ☆72Updated 10 months ago
• SafeBreach-Labs / CortexVortex
  ☆80Updated last year
• 0xJs / EnumEDRs
  Enumerate active EDR's on the system
  ☆148Updated 3 months ago
• pygrum / monarch
  Monarch - The Adversary Emulation Toolkit
  ☆63Updated last year
• klezVirus / koppeling-p
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆78Updated last year
• fin3ss3g0d / NativeThreadpool
  Work, timer, and wait callback example using solely Native Windows APIs.
  ☆88Updated last year
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆75Updated last year
• 123ojp / GREtunnel-scanner
  This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion
  ☆92Updated 4 months ago
• redr0nin / Agentic-Flow-Corruption-Attacks
  A red teaming attack paradigm against AI Agents
  ☆32Updated 10 months ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆96Updated 2 years ago
• tijme / conferences
  Some of the presentations, workshops, and labs I gave at public conferences.
  ☆34Updated 2 months ago
• joe-desimone / rep-research
  ☆79Updated last year
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆139Updated last year
• xaitax / NTSleuth
  Comprehensive Windows Syscall Extraction & Analysis Framework
  ☆160Updated 4 months ago
• zero2504 / Fairy-Law
  Fairy Law - Compromise or disable EDR security solutions
  ☆63Updated last month
• praetorian-inc / glato
  GitLab Attack TOolkit
  ☆34Updated 3 months ago
• 0xTriboulet / rssh-rs
  ☆54Updated 7 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆66Updated 7 months ago
• SafeBreach-Labs / MagicDot
  A set of rootkit-like abilities for unprivileged users, and vulnerabilities based on the DOT-to-NT path conversion known issue
  ☆107Updated last year