Alternatives and similar repositories for TriageMCP

Users that are interested in TriageMCP are comparing it to the libraries listed below

• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆38Updated 6 months ago
• OtterHacker / Hooker
  ☆108Updated 10 months ago
• xaitax / NTSleuth
  Comprehensive Windows Syscall Extraction & Analysis Framework
  ☆118Updated 2 weeks ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆22Updated 8 months ago
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆99Updated 3 months ago
• CroodSolutions / AutoRMM
  AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…
  ☆87Updated last month
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆91Updated last year
• mez-0 / citadel
  A Payload Analysis Framework
  ☆85Updated 2 months ago
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆50Updated 11 months ago
• MazX0p / CobaltSentry
  ☆24Updated 6 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆64Updated 3 months ago
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated last month
• whokilleddb / sinister-vsix
  Blog/Journal on how to backdoor VSCode extensions
  ☆73Updated last month
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆93Updated last year
• jaredcatkinson / MalwareMorphology
  ☆82Updated 9 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Updated 5 months ago
• d1rkmtrr / VSCode-Backdoor
  Backdooring VSCode Projects
  ☆79Updated 3 months ago
• sensepost / mydumbedr
  ☆120Updated last year
• rad9800 / talks
  ☆58Updated 4 months ago
• CroodSolutions / BeaconatorC2
  BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…
  ☆83Updated 2 weeks ago
• xpn / mythic_mcp
  A simple POC to expose Mythic as a MCP server
  ☆67Updated 5 months ago
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 5 years ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆138Updated last year
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆65Updated 9 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆51Updated 8 months ago
• 0xv1n / Havoc-ProfileGenerator
  malleable profile generator GUI for Havoc
  ☆55Updated 2 years ago
• DarkSpaceSecurity / DocEx
  APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
  ☆92Updated 5 months ago
• ArtemBaranov / WindowsRootkitsGuide
  ☆69Updated 7 months ago
• Offensive-Panda / DV_NEW
  This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)
  ☆52Updated last year
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆140Updated last year