Alternatives and similar repositories for PMD

Users that are interested in PMD are comparing it to the libraries listed below

• rad9800 / byor
  ☆140Updated last month
• yehia-mamdouh / ZeroProbe
  ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…
  ☆105Updated 4 months ago
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆157Updated 4 months ago
• ArtemBaranov / WindowsRootkitsGuide
  ☆67Updated 5 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆81Updated 10 months ago
• outflanknl / edr-internals
  Tools for analyzing EDR agents
  ☆232Updated last year
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆148Updated 5 months ago
• fin3ss3g0d / StoneKeeper
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆206Updated 6 months ago
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆186Updated 5 months ago
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆63Updated last month
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆192Updated 5 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆62Updated 2 months ago
• floesen / EventLogCrasher
  ☆189Updated last year
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆197Updated 3 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆201Updated 4 months ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆183Updated last week
• cocomelonc / bsprishtina-2024-maldev-workshop
  BSides Prishtina 2024 Malware Development and Persistence workshop
  ☆88Updated last month
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆129Updated 3 weeks ago
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆135Updated last year
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆244Updated 2 months ago
• 7etsuo / win32-shellcode
  Win32 Shellcode CheatSheet: Your visual guide for crafting and understanding shellcode. Ideal for malware, and exploit developers
  ☆60Updated 10 months ago
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆210Updated 6 months ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆261Updated 8 months ago
• Cracked5pider / earlycascade-injection
  early cascade injection PoC based on Outflanks blog post
  ☆221Updated 8 months ago
• sheimo / awesome-lolbins-and-beyond
  A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.
  ☆176Updated 8 months ago
• cocomelonc / mdmz_book
  The result of research and investigation of malware development tricks, techniques, evasion, cryptography and linux malware
  ☆50Updated 3 months ago
• MazX0p / CobaltSentry
  ☆24Updated 5 months ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆247Updated 7 months ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆194Updated 4 months ago
• FuzzySecurity / BHUSA-2023
  ☆105Updated last year