CsaProtocol / PowerShell-FIM
File integrity monitor proof-of-concept in PowerShell sends a message via Telegram when it detects changes to a specified directory. It continually checks for changes by generating hashes for all files and comparing them to a stored baseline. Uses Telegram API and allows choice of hash algorithm.
☆11Updated 2 years ago
Alternatives and similar repositories for PowerShell-FIM:
Users that are interested in PowerShell-FIM are comparing it to the libraries listed below
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- Cmdlets for capturing Windows Events☆13Updated 2 years ago
- A Multi-Threaded PE Export Collection Utility☆14Updated last year
- Searching .evtx logs for remote connections☆24Updated last year
- CIS Benchmark testing of Windows SIEM configuration☆44Updated last year
- Parser for Windows PowerShell script block logs☆13Updated 3 weeks ago
- CLI Search for Security Operators of MITRE ATT&CK URLs☆16Updated 2 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆14Updated last year
- Tool for obtaining information about PPL processes☆17Updated 11 months ago
- ☆27Updated last year
- ☆15Updated 3 years ago
- Mass Assigner is a simple tool made to probe for mass assignment vulnerability through JSON field modification in HTTP requests☆12Updated 6 months ago
- Track past changes in your AD accounts (users ,computers & groups), even if no event logs exist - e.g. not collected, no retention/overwr…☆15Updated 2 months ago
- Leverages B64 chunks to split files and save to clipboard☆25Updated 7 months ago
- Extension functionality for the NightHawk operator client☆26Updated last year
- Tricard - Malware Sandbox Fingerprinting☆19Updated last year
- ☆17Updated last year
- ☆22Updated last year
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Updated last year
- This is a simple Python script that connects to a MISP instance and retrieves attributes of specific types (such as IP addresses, URLs, a…☆16Updated last year
- A C# Tool to gather information about email breaches☆13Updated last year
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.☆27Updated last year
- Official repository for the Advanced Software Exploitation (ASE) course☆20Updated 6 years ago
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…☆19Updated 2 years ago
- Yet Another Memory Analyzer for malware detection☆24Updated last year
- ☆14Updated 3 years ago
- Speaking materials from conferences I've given☆9Updated 2 years ago