Ahmed-AL-Maghraby / Windows-Registry-Analysis-Cheat-SheetLinks
☆161Updated 2 years ago
Alternatives and similar repositories for Windows-Registry-Analysis-Cheat-Sheet
Users that are interested in Windows-Registry-Analysis-Cheat-Sheet are comparing it to the libraries listed below
Sorting:
- Repository for sharing examples of our artifacts data and for use in new analyst recruitment.☆107Updated 4 months ago
- A collection of tools, scripts and personal research☆145Updated 2 weeks ago
- A collection of CVEs weaponized by ransomware operators☆121Updated last week
- Advanced Bash script designed for conducting digital forensics on Linux systems☆141Updated last year
- ☆204Updated 9 months ago
- ThreatSeeker: Threat Hunting via Windows Event Logs☆123Updated 2 years ago
- CLI tools for forensic investigation of Windows artifacts☆346Updated last month
- Free training course offered at Hack Space Con 2023☆138Updated 2 years ago
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆125Updated last year
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆188Updated 8 months ago
- ☆136Updated 2 years ago
- Completely Risky Active-Directory Simulation Hub☆103Updated last year
- A ProcessMonitor visualization application written in rust.☆183Updated 2 years ago
- ☆122Updated last year
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆382Updated last year
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆105Updated last year
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆248Updated 4 months ago
- PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.☆319Updated 3 months ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆157Updated 4 months ago
- DFIR LABS - A compilation of challenges that aims to provide practice in simple to advanced concepts in the following topics: Digital For…☆326Updated 2 weeks ago
- Just some lists of Malware Configs☆172Updated 7 months ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated 11 months ago
- Windows Malware Investigation Scripts & Docs☆83Updated 9 months ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆254Updated last year
- LOLAPPS is a compendium of applications that can be used to carry out day-to-day exploitation.☆190Updated 6 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆423Updated 4 months ago
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆78Updated 4 months ago
- Raw data from Threat Intelligence Reports with automatic reports collection and keyword search across thousands of reports☆129Updated last week
- ☆160Updated last year
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆411Updated 2 weeks ago