Alternatives and similar repositories for PMD

Users that are interested in PMD are comparing it to the libraries listed below

• rad9800 / byor
  ☆143Updated last month
• CyberSecurityUP / Offensive-Windows-Drivers-Development
  ☆160Updated 5 months ago
• ArtemBaranov / WindowsRootkitsGuide
  ☆67Updated 6 months ago
• yehia-mamdouh / ZeroProbe
  ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…
  ☆105Updated 5 months ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆89Updated 11 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆62Updated 2 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆152Updated last week
• outflanknl / edr-internals
  Tools for analyzing EDR agents
  ☆238Updated last year
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆150Updated 6 months ago
• 7etsuo / win32-shellcode
  Win32 Shellcode CheatSheet: Your visual guide for crafting and understanding shellcode. Ideal for malware, and exploit developers
  ☆60Updated 11 months ago
• floesen / EventLogCrasher
  ☆188Updated last year
• praetorian-inc / ChromeAlone
  A tool to transform Chromium browsers into a C2 Implant
  ☆130Updated this week
• eversinc33 / TriageMCP
  Vibe Malware Triage - MCP server for static PE analysis.
  ☆62Updated 2 months ago
• fin3ss3g0d / StoneKeeper
  StoneKeeper C2, an experimental EDR evasion framework for research purposes
  ☆206Updated 7 months ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆190Updated last month
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆189Updated 6 months ago
• DarkSpaceSecurity / DocEx
  APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
  ☆91Updated 4 months ago
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆197Updated 4 months ago
• MazX0p / CobaltSentry
  ☆24Updated 5 months ago
• MythicAgents / Hannibal
  A Mythic Agent written in PIC C.
  ☆196Updated 6 months ago
• sheimo / awesome-lolbins-and-beyond
  A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.
  ☆187Updated 9 months ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆248Updated 8 months ago
• django-88 / NomadScanner
  ☆163Updated 3 months ago
• MatheuZSecurity / Rootkit
  Collection of codes focused on Linux rootkits
  ☆143Updated last month
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆203Updated 5 months ago
• cocomelonc / mdmz_book
  The result of research and investigation of malware development tricks, techniques, evasion, cryptography and linux malware
  ☆53Updated 4 months ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆263Updated 8 months ago
• Octoberfest7 / zip_smuggling
  Python3 utility for creating zip files that smuggle additional data for later extraction
  ☆250Updated 2 months ago
• BlackSnufkin / CheckPlz
  Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.
  ☆21Updated 7 months ago
• hackerhouse-opensource / WMIProcessWatcher
  A CIA tradecraft technique to asynchronously detect when a process is created using WMI.
  ☆135Updated last year