Alternatives and similar repositories for awesome-endpoint-detection-and-response

Users that are interested in awesome-endpoint-detection-and-response are comparing it to the libraries listed below

• connormcgarr / Red-Team-Automation-Scripts

  View on GitHub
  Scripts to help automate tedious red teaming enumeration and tasks.
  ☆17Mar 23, 2020Updated 5 years ago
• ComodoSecurity / openedr

  View on GitHub
  Open EDR public repository
  ☆2,602Jan 13, 2024Updated 2 years ago
• hasherezade / tag_converter

  View on GitHub
  ☆23Feb 3, 2021Updated 5 years ago
• filescanio / fsio-cli

  View on GitHub
  Python CLI covering the FileScan.IO API - enabling automatic interaction with www.filescan.io or private instances
  ☆14Jul 15, 2025Updated 7 months ago
• h41th / Simple-Crystal-Palace-RDLL-template-for-Adaptix

  View on GitHub
  ☆34Updated this week
• 0xrawsec / whids

  View on GitHub
  Open Source EDR for Windows
  ☆1,296Feb 25, 2023Updated 2 years ago
• hardwaterhacker / i_want_my_eip

  View on GitHub
  Resources for I Want My EIP, presented at Derbycon 2017
  ☆11Sep 23, 2017Updated 8 years ago
• aaaddress1 / shellDev.py

  View on GitHub
  tool for building windows shellcode in C by MinGW
  ☆54Nov 21, 2021Updated 4 years ago
• ChoiSG / bin2sideload

  View on GitHub
  ☆11Nov 12, 2023Updated 2 years ago
• TH3xACE / genAvatar

  View on GitHub
  This script was developped to assist in SpearPhishing campaign during Red Team operations. It can be used to generate random name based o…
  ☆13Feb 6, 2023Updated 3 years ago
• MISP / PyMISPWarningLists

  View on GitHub
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆35Jan 8, 2026Updated last month
• deeexcee-io / LOI-Bins

  View on GitHub
  Abusing Remote Windows SMB Shares for Fun and Pen Testing
  ☆15May 23, 2023Updated 2 years ago
• redt1de / MaldevEDR

  View on GitHub
  EDR/AV Simulation for Malware Development
  ☆13Oct 21, 2023Updated 2 years ago
• Krypteria / Ant

  View on GitHub
  Ant is a post-exploitation tool designed to automate the deployment of tunnels and port forwarding based on a predefined topology configu…
  ☆17Jan 31, 2024Updated 2 years ago
• rzakaan / terminal-menu

  View on GitHub
  Terminal Menu For Python Development
  ☆11Oct 17, 2024Updated last year
• capt-meelo / AggressorScripts

  View on GitHub
  Collection of scripts that I created to make my life easier.
  ☆12May 10, 2021Updated 4 years ago
• filescanio / fsCommunity

  View on GitHub
  Collection of scripts / samples / snippits around the community service at www.filescan.io
  ☆15Nov 6, 2025Updated 3 months ago
• hasherezade / 7ev3n_decoders

  View on GitHub
  Decoders for 7ev3n ransomware
  ☆17Oct 24, 2016Updated 9 years ago
• MISP / misp-grafana

  View on GitHub
  A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB
  ☆18Mar 15, 2024Updated last year
• mthcht / ThreatHunting-Keywords-yara-rules

  View on GitHub
  yara detection rules for hunting with the threathunting-keywords project
  ☆157May 11, 2025Updated 9 months ago
• hasherezade / mal_unpack_py

  View on GitHub
  Python wrappers for mal_unpack
  ☆37Sep 19, 2023Updated 2 years ago
• hasherezade / injection

  View on GitHub
  Windows process injection methods
  ☆18Jul 18, 2021Updated 4 years ago
• 0xflagplz / Xll-Payload-Generator

  View on GitHub
  Excel Add In Payload Generator
  ☆14Oct 9, 2023Updated 2 years ago
• MISP / misp-guard

  View on GitHub
  misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…
  ☆19Jan 9, 2026Updated last month
• n132 / libx

  View on GitHub
  A Linux Kernel Exploitation C Library
  ☆19Oct 29, 2025Updated 3 months ago
• dorkamotorka / ebpf-github-actions

  View on GitHub
  Demo repository for running eBPF in GitHub Actions
  ☆23Mar 27, 2025Updated 10 months ago
• 3ndG4me / AgentSmith

  View on GitHub
  Golang C2 Agent PoC utilizing web and social media paltforms to issue command and control and pasting results to PasteBin
  ☆17Apr 23, 2020Updated 5 years ago
• SentineLabs / log4j_response

  View on GitHub
  ☆15Dec 22, 2021Updated 4 years ago
• mytechnotalent / MalwareBazaar_MCP

  View on GitHub
  An AI-driven MCP server that autonomously interfaces with Malware Bazaar, delivering real-time threat intel and sample metadata for autho…
  ☆26Nov 26, 2025Updated 2 months ago
• echo-devim / NoCrypt

  View on GitHub
  AntiRansomware Linux Kernel Module
  ☆37May 25, 2023Updated 2 years ago
• YARAHQ / yara-forge

  View on GitHub
  Automated YARA Rule Standardization and Quality Assurance Tool
  ☆282Feb 8, 2026Updated last week
• cti-cmm / framework

  View on GitHub
  A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…
  ☆42Jan 20, 2026Updated 3 weeks ago
• nullsection / SharpETW-Patch

  View on GitHub
  ☆23Nov 29, 2023Updated 2 years ago
• Blazz3 / MalDev-AV-EDR-Evasion-for-Pentesters

  View on GitHub
  MalDev & AV-EDR Evasion for Pentesters
  ☆20Feb 17, 2023Updated 3 years ago
• ralphte / arm-yourself-talk

  View on GitHub
  How to ARM Yourself - Bsides Tampa 2020
  ☆14Mar 1, 2020Updated 5 years ago
• viorelyo / Procmonel

  View on GitHub
  Procmonel is Procmon like monitoring system implemented using Microsoft WDK
  ☆12Dec 25, 2019Updated 6 years ago
• blacklanternsecurity / sigma-rules

  View on GitHub
  A collection of Sigma rules organized by MITRE ATT&CK technique
  ☆18Jul 26, 2021Updated 4 years ago
• ciccio-87 / Python-AV-Evasion

  View on GitHub
  Execute shellcode and evade AV detection with python.
  ☆15Oct 8, 2015Updated 10 years ago
• seriotonctf / kerberos_aes_key

  View on GitHub
  Generate AES128 and AES256 Kerberos keys from a given username, password, and realm
  ☆18Sep 18, 2024Updated last year