CsaProtocol / PowerShell-FIM
File integrity monitor proof-of-concept in PowerShell sends a message via Telegram when it detects changes to a specified directory. It continually checks for changes by generating hashes for all files and comparing them to a stored baseline. Uses Telegram API and allows choice of hash algorithm.
☆11Updated 2 years ago
Alternatives and similar repositories for PowerShell-FIM:
Users that are interested in PowerShell-FIM are comparing it to the libraries listed below
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- Cmdlets for capturing Windows Events☆14Updated 2 years ago
- ☆17Updated last year
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆14Updated last year
- Tool for obtaining information about PPL processes☆17Updated last year
- Official repository for the Advanced Software Exploitation (ASE) course☆20Updated 6 years ago
- Searching .evtx logs for remote connections☆24Updated last year
- CLI Search for Security Operators of MITRE ATT&CK URLs☆16Updated 2 years ago
- ☆14Updated 3 years ago
- A collection of my presentation materials.☆16Updated 9 months ago
- CIS Benchmark testing of Windows SIEM configuration☆44Updated last year
- Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual☆13Updated 2 years ago
- A Multi-Threaded PE Export Collection Utility☆14Updated last year
- The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application pen…☆10Updated 8 years ago
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Updated 10 months ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- List accounts with Service Principal Names (SPN) not linked to active dns records in an Active Directory Domain.☆16Updated 3 weeks ago
- Speaking materials from conferences I've given☆9Updated 2 years ago
- Leverages B64 chunks to split files and save to clipboard☆25Updated 8 months ago
- Finding sensitive information in the trimmed parts of cropped images☆28Updated 3 years ago
- Parser for Windows PowerShell script block logs☆13Updated last month
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆9Updated 2 years ago
- Track previous changes on specific AD accounts (users, computers) and Groups (online DC), even if event logs were wiped/not collected (e.…☆15Updated 3 weeks ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 7 months ago
- Kibana app for RedELK☆16Updated last year
- Tricard - Malware Sandbox Fingerprinting☆20Updated last year
- A Python script to find tenant id an region from a list of domain names.☆12Updated 3 weeks ago
- ☆27Updated last year
- Hash collisions and their exploitations☆9Updated 2 years ago
- Mass Assigner is a simple tool made to probe for mass assignment vulnerability through JSON field modification in HTTP requests☆12Updated 8 months ago