Alternatives and similar repositories for atomic-red-team-mcp

Users that are interested in atomic-red-team-mcp are comparing it to the libraries listed below

• casp3r0x0 / CallWindowProcW-ShellcodeLoader

  View on GitHub
  ☆18Sep 1, 2025Updated 5 months ago
• f-bader / AzSentinelQueries

  View on GitHub
  Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.
  ☆137Feb 5, 2026Updated last week
• oloruntolaallbert / MS-Attack-Range

  View on GitHub
  An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…
  ☆61Jul 27, 2025Updated 6 months ago
• vysecurity / ExfilServer

  View on GitHub
  Client-side Encrypted Upload Server Python Script
  ☆66Jul 10, 2025Updated 7 months ago
• Scoubi / BloodSOCer

  View on GitHub
  ☆59Dec 10, 2025Updated 2 months ago
• SpecterOps / ConfigManBearPig

  View on GitHub
  PowerShell collector for adding SCCM attack paths to BloodHound with OpenGraph
  ☆67Jan 30, 2026Updated 2 weeks ago
• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated last year
• 0xsh3llf1r3 / ColdWer

  View on GitHub
  Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass
  ☆74Jan 29, 2026Updated 2 weeks ago
• ml58158 / Demystifying-KQL

  View on GitHub
  Content Repo for Demystifying KQL Tutorial Series
  ☆72Sep 1, 2024Updated last year
• nightwatchcybersecurity / airflowscan

  View on GitHub
  Checklist and tools for increasing security of Apache Airflow
  ☆32May 7, 2021Updated 4 years ago
• abenson / hostfw

  View on GitHub
  Simple host-based permit-by-exception iptables generation script
  ☆16Sep 5, 2020Updated 5 years ago
• fortinet-fortisoar / solution-pack-soar-framework

  View on GitHub
  ☆14Feb 6, 2026Updated last week
• MHaggis / Security-Detections-MCP

  View on GitHub
  MCP to help Defenders Detection Engineer Harder and Smarter
  ☆231Feb 4, 2026Updated last week
• brayden031 / varalyze

  View on GitHub
  Cyber threat intelligence tool suite.
  ☆42Apr 3, 2025Updated 10 months ago
• olafhartong / TA-Sysmon-deploy

  View on GitHub
  Deploy and maintain Symon through the Splunk Deployment Sever
  ☆32Jul 30, 2020Updated 5 years ago
• karthik0x00 / exploit-development

  View on GitHub
  A tutorial and resources for exploit development learners
  ☆10Jan 25, 2021Updated 5 years ago
• Mojo8898 / scripts

  View on GitHub
  This repository contains a collection of scripts I use regularly for offensive security-related tasks.
  ☆15Jan 17, 2026Updated 3 weeks ago
• JeffMichelmore / MDEKit

  View on GitHub
  ☆42Oct 11, 2023Updated 2 years ago
• noodlemctwoodle / sentinel.blog

  View on GitHub
  The Sentinel.blog Repository provides automation tools for updating Analytics Rules, Content Hub Solutions, and Workbooks, eliminating re…
  ☆17Updated this week
• pard0p / Remote-BOF-Runner

  View on GitHub
  Remote BOF Runner is a Havoc extension framework for remote execution of Beacon Object Files (BOFs) using a PIC loader made with Crystal …
  ☆88Jan 2, 2026Updated last month
• Bert-JanP / KustoHawk

  View on GitHub
  KustoHawk is a lightweight incident triage and response tool designed for effective incident response in Microsoft Defender XDR and Micro…
  ☆126Jan 11, 2026Updated last month
• dirkjanm / scepreq

  View on GitHub
  SCEP request tool for AD CS and Intune
  ☆73Oct 24, 2025Updated 3 months ago
• misthi0s / Malware_IOCs

  View on GitHub
  IOCs for various malware families
  ☆11Jul 18, 2024Updated last year
• Logisek / DeltaScan

  View on GitHub
  Network scanning tool designed to detect and report changes in open ports and services over time
  ☆12Oct 16, 2025Updated 3 months ago
• sophoslabs / metasploit_gather_exchange

  View on GitHub
  Metasploit Post-Exploitation Gather module for Exchange Server
  ☆25Mar 26, 2021Updated 4 years ago
• Prabesh01 / fb-message-delete-automation

  View on GitHub
  Just an automation script to delete/unsend fb messages. Inspired from: @pishangujeniya/instagram-helper
  ☆10Jul 31, 2022Updated 3 years ago
• elastic / cortado

  View on GitHub
  ☆14Jan 29, 2026Updated 2 weeks ago
• kh4sh3i / FFUF-Tricks

  View on GitHub
  Describe how to use ffuf different options with examples
  ☆13Jun 13, 2022Updated 3 years ago
• horizon3ai / CVE-2025-64155

  View on GitHub
  CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution
  ☆30Jan 13, 2026Updated last month
• rkbennett / icmpsh

  View on GitHub
  Simple reverse ICMP shell
  ☆14Apr 30, 2024Updated last year
• ict / creddump7

  View on GitHub
  ☆14Apr 29, 2019Updated 6 years ago
• ItzHerbie / KQL

  View on GitHub
  Detection rules and threat hunting queries in Defender XDR and Azure Sentinel
  ☆16Updated this week
• cedowens / keygrabber

  View on GitHub
  Automation for grabbing keys from a Linux host. Useful during red team exercises to quickly help assess what access to a Linux host can l…
  ☆17May 7, 2021Updated 4 years ago
• BishopFox / local-llm-ctf

  View on GitHub
  A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow
  ☆15Sep 10, 2024Updated last year
• abbyslab / social-user-probe

  View on GitHub
  Browser extension for launching multi-platform OSINT queries from grouped YAML profiles.
  ☆10Apr 25, 2025Updated 9 months ago
• atropineal / regsvr32

  View on GitHub
  ☆11May 24, 2017Updated 8 years ago
• CyberSecurityUP / ImgPayload

  View on GitHub
  Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …
  ☆25Jun 11, 2025Updated 8 months ago
• XanthusSecurity / memparse

  View on GitHub
  ☆14Jan 18, 2020Updated 6 years ago
• askme765cs / open-docs-mcp

  View on GitHub
  An open-source MCP implementation providing document management functionality
  ☆16Apr 8, 2025Updated 10 months ago