Alternatives and similar repositories for TriageMCP

Users that are interested in TriageMCP are comparing it to the libraries listed below

• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆33Updated 11 months ago
• reecdeep / hollowise
  Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …
  ☆39Updated 10 months ago
• OtterHacker / Hooker
  ☆108Updated last year
• offalltn / gitC2
  POC of GITHUB simple C2 in rust
  ☆52Updated 4 months ago
• CroodSolutions / AutoRMM
  AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…
  ☆90Updated 4 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆66Updated 7 months ago
• mez-0 / citadel
  A Payload Analysis Framework
  ☆112Updated 2 months ago
• CroodSolutions / BeaconatorC2
  BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…
  ☆88Updated last month
• ArtemBaranov / WindowsRootkitsGuide
  ☆71Updated 10 months ago
• Karkas66 / CelestialSpark
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆102Updated 8 months ago
• HullaBrian / COMmander
  .NET tool used to enrich RPC telemetry
  ☆101Updated 6 months ago
• ChaitanyaHaritash / IllusiveFog
  Windows Administrator level Implant.
  ☆50Updated last year
• MazX0p / CobaltSentry
  ☆24Updated 10 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆91Updated last year
• SaadAhla / VSCode-Backdoor
  Backdooring VSCode Projects
  ☆82Updated 6 months ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆122Updated last week
• sensepost / mydumbedr
  ☆121Updated last year
• LambdaMamba / LenaMalwareAnalysis
  Lena's scripts/code/resources for malware analysis
  ☆26Updated last year
• jaredcatkinson / MalwareMorphology
  ☆84Updated last year
• whokilleddb / sinister-vsix
  Blog/Journal on how to backdoor VSCode extensions
  ☆75Updated 5 months ago
• 0x4141414141 / Malware-Devlopment
  Work in progress experiments with reverse shells, AV bypass and extraction of secrets from memory in C
  ☆39Updated 6 years ago
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆118Updated 6 months ago
• CroodSolutions / BypassIT
  BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.
  ☆47Updated 5 months ago
• warpnet / COM-Fuzzer
  Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…
  ☆154Updated last month
• dmcxblue / Claude-C2
  Utilizng an MCP Server to communicate with your C2
  ☆86Updated 7 months ago
• pulpocaminante / PPL-0day
  Demoting PPL anti-malware services to less than a guest user
  ☆66Updated 10 months ago
• SafeBreach-Labs / QuickShell
  A library and a set of tools for exploiting and communicating with Google's Quick Share devices.
  ☆47Updated 8 months ago
• xaitax / NTSleuth
  Comprehensive Windows Syscall Extraction & Analysis Framework
  ☆157Updated 3 months ago
• rtfmkiesel / loldrivers-client
  Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io
  ☆87Updated 3 weeks ago
• RWXstoned / GimmeShelter
  Situational Awareness script to identify how and where to run implants
  ☆67Updated last year