Alternatives and similar repositories for PMD

Users that are interested in PMD are comparing it to the libraries listed below

• ArtemBaranov / WindowsRootkitsGuide
  ☆68Updated 4 months ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆246Updated 6 months ago
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆58Updated 3 months ago
• V-i-x-x / kernel-callback-removal
  kernel callback removal (Bypassing EDR Detections)
  ☆166Updated 2 months ago
• yehia-mamdouh / ZeroProbe
  ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…
  ☆103Updated 2 months ago
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆144Updated 4 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆79Updated 9 months ago
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆190Updated 3 weeks ago
• ColeHouston / Sunder
  Windows rootkit designed to work with BYOVD exploits
  ☆198Updated 4 months ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆144Updated last month
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆61Updated 2 weeks ago
• dazzyddos / HSC24RedTeamInfra
  Slides and Codes used for the workshop Red Team Infrastructure Automation
  ☆185Updated last year
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆192Updated 2 months ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆257Updated 6 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆199Updated 3 months ago
• trustedsec / specula
  ☆191Updated 8 months ago
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆206Updated 4 months ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆190Updated 3 months ago
• django-88 / NomadScanner
  ☆158Updated last month
• badsectorlabs / ludus_adaptix_c2
  An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts
  ☆151Updated last week
• lolc2 / lolc2.github.io
  lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection
  ☆208Updated last month
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆178Updated 4 months ago
• OtterHacker / Conferences
  ☆303Updated 6 months ago
• fin3ss3g0d / StoneKeeper
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆203Updated 5 months ago
• outflanknl / edr-internals
  Tools for analyzing EDR agents
  ☆228Updated 11 months ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆180Updated last month
• floesen / EventLogCrasher
  ☆188Updated last year
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆99Updated 3 weeks ago
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆224Updated 3 months ago
• DarkSpaceSecurity / DocEx
  APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
  ☆89Updated 2 months ago