Alternatives and similar repositories for Anti-Forensics

Users that are interested in Anti-Forensics are comparing it to the libraries listed below

• eric-conrad / c2-talk
  ☆37Updated last year
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆82Updated last year
• SafeBreach-Labs / DoubleDrive
  A fully-undetectable ransomware that utilizes OneDrive & Google Drive to encrypt target local files
  ☆124Updated last year
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Updated 2 months ago
• BeetleChunks / Obligato
  This project is an implant framework designed for long term persistent access to Windows machines.
  ☆110Updated last year
• ArtemBaranov / WindowsRootkitsGuide
  ☆68Updated 4 months ago
• jaredcatkinson / MalwareMorphology
  ☆80Updated 6 months ago
• sensepost / mydumbedr
  ☆119Updated last year
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆33Updated 11 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆79Updated 9 months ago
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆141Updated 10 months ago
• knight0x07 / DarkGate-Install-Script-via-DNS-TXT-Record
  PoC showcasing new DarkGate Install Script retrieval technique via DNS TXT Record
  ☆41Updated last year
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆131Updated 9 months ago
• ghostpepper108 / Evasion
  ☆107Updated 2 years ago
• georgesotiriadis / MalwareDev
  ☆85Updated 2 years ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆147Updated last year
• PenetrumLLC / Malcore-Playbook
  Modular framework for automating triaging, malware analysis, and analyst workflows
  ☆40Updated last month
• ashemery / REDM
  Reverse Engineering and Debugging Malware
  ☆31Updated 2 years ago
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆100Updated 3 months ago
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆53Updated 2 weeks ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆188Updated 4 months ago
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆184Updated last year
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆128Updated last month
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆38Updated 3 years ago
• naacbin / CovenantDecryptor
  ☆20Updated last year
• OtterHacker / Hooker
  ☆107Updated 7 months ago
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆147Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆170Updated 2 weeks ago
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆144Updated 4 months ago
• x86byte / Stuxnet-Rootkit
  Stuxnet extracted binaries by reversing & Stuxnet Rootkit Analysis
  ☆56Updated 8 months ago