eversinc33 / TriageMCPLinks
Vibe Malware Triage - MCP server for static PE analysis.
☆47Updated 2 weeks ago
Alternatives and similar repositories for TriageMCP
Users that are interested in TriageMCP are comparing it to the libraries listed below
Sorting:
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆36Updated 3 months ago
- MITRE TTPs derived from Conti's leaked playbooks from XSS.IS☆38Updated 3 years ago
- malleable profile generator GUI for Havoc☆55Updated 2 years ago
- Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …☆103Updated 2 months ago
- Windows Administrator level Implant.☆49Updated 8 months ago
- Situational Awareness script to identify how and where to run implants☆49Updated 5 months ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆17Updated 5 months ago
- POC of GITHUB simple C2 in rust☆53Updated 4 months ago
- Utilizng an MCP Server to communicate with your C2☆64Updated 2 weeks ago
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆52Updated last year
- Lifetime AMSI bypass.☆35Updated last month
- ☆80Updated 6 months ago
- This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.☆79Updated 9 months ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆56Updated 2 years ago
- ☆23Updated 3 months ago
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆38Updated 10 months ago
- Deploy a phishing infrastructure on the fly.☆68Updated 5 months ago
- ☆59Updated last year
- ☆55Updated 7 months ago
- Persist like a Dodder☆60Updated 2 weeks ago
- ☆37Updated last year
- ☆69Updated last year
- This is the combination of multiple evasion techniques to evade defenses. (Dirty Vanity)☆48Updated last year
- ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.☆47Updated last year
- ☆25Updated 2 months ago
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆82Updated last year
- Windows Thread Pool Injection Havoc Implementation☆29Updated last year
- Example code samples from our ScriptBlock Smuggling Blog post☆90Updated 11 months ago
- Utilities for obfuscating shellcode☆68Updated 2 months ago
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆36Updated 4 months ago