ConnorShride / box-psLinks
Powershell sandboxing utility
☆18Updated last week
Alternatives and similar repositories for box-ps
Users that are interested in box-ps are comparing it to the libraries listed below
Sorting:
- Jupyter Notebooks for Cyber Threat Intelligence☆35Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated last year
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆60Updated 2 years ago
- A repo for centralizing ongoing research on the new Windows 10/11 DFIR artifact, EventTranscript.db.☆39Updated 2 years ago
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆53Updated last year
- YARA rule analyzer to improve rule quality and performance☆101Updated last month
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆78Updated 2 weeks ago
- JPCERT/CC public YARA rules repository☆106Updated 5 months ago
- ☆34Updated 7 months ago
- ☆15Updated 4 years ago
- Rules Shared by the Community from 100 Days of YARA 2023☆76Updated 2 years ago
- CryptnetURLCacheParser is a tool to parse CryptAPI cache files☆17Updated 9 months ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆27Updated this week
- An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.☆21Updated 2 years ago
- Random hunting ordiented yara rules☆96Updated 2 years ago
- Threat Box Assessment Tool☆19Updated 3 years ago
- ☆7Updated 7 months ago
- The Linux DFIR Collector is a stand-alone collection tool for Gnu / Linux. Dump artifacts in json format with very few impacts on the hos…☆31Updated 3 years ago
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆31Updated last year
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated 3 months ago
- MWDB exercises☆20Updated 4 months ago
- Various capabilities for static malware analysis.☆78Updated 8 months ago
- A collection of Terraform and Ansible scripts that automatically (and quickly) deploys a small Velociraptor R&D lab.☆20Updated 4 years ago
- my MSTICpy practice and custom tools repository☆11Updated last month
- Collection of scripts provided for public use☆34Updated last month
- ☆14Updated 2 years ago
- Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.☆38Updated 7 months ago
- A pySigma wrapper to manage detection rules.☆39Updated this week
- ☆19Updated 3 years ago
- Remote access and Antivirus Logging Database☆42Updated last year