AhmedKamal1432 / EvilizeLinks
Triaging Windows event logs based on SANS Poster
☆39Updated 2 years ago
Alternatives and similar repositories for Evilize
Users that are interested in Evilize are comparing it to the libraries listed below
Sorting:
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated last year
- Assist analyst and threat hunters to understand Windows authentication logs and to analyze brutforce scenarios.☆18Updated last year
- ☆38Updated 3 years ago
- Continuous kerberoast monitor☆45Updated last year
- ☆27Updated 4 years ago
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆49Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆94Updated 2 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Get intelligence info (tags, mitre techniques, yara and more) and find similar malware in a fast and easy way☆18Updated 3 years ago
- Winterfell hunt is a python script to perform auto threat hunting for malicious activities in windows OS based on collected data by winte…☆15Updated 4 years ago
- Evtx Log (xml) Browser☆56Updated 2 years ago
- Building ActiveDirectory Lab for practicing various attack vectors used during Red Team engagement.☆37Updated 5 years ago
- ☆45Updated 2 years ago
- Bloodhound Portable for Windows☆51Updated 2 years ago
- ☆34Updated 2 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Hunt for Keywords , Mutex, Windows Event,Registry Keys,Process,Schedule tasks in Windows Machine☆22Updated 6 months ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆73Updated 3 years ago
- Searching .evtx logs for remote connections☆23Updated last year
- Repository for LNK stuff☆30Updated 2 years ago
- Active DIrectory Lab for Pentesting Practice☆24Updated 2 years ago
- ☆15Updated 3 years ago
- A set of tools for collecting forensic information☆26Updated 5 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- A simple command line program to help defender test their detections for network beacon patterns and domain fronting☆69Updated 3 years ago
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆39Updated last year
- ProcDot Malware Sandbox☆24Updated 7 months ago
- A cloud automation system for Red Teams based on Terraform and Ansible☆23Updated 4 years ago