PowerShell script for hunting webshells on Microsoft Exchange Servers.
☆56Feb 1, 2017Updated 9 years ago
Alternatives and similar repositories for Invoke-ExchangeWebShellHunter
Users that are interested in Invoke-ExchangeWebShellHunter are comparing it to the libraries listed below
Sorting:
- BackdoorMan is a toolkit that helps you find malicious, hidden and suspicious PHP scripts and shells in a chosen destination.☆77Dec 13, 2022Updated 3 years ago
- Evil Inject Finder Remote Capability and Parser☆11Nov 22, 2018Updated 7 years ago
- Konrads' Pen-Ultimate (Windows) Log File Parser☆14Dec 27, 2025Updated 2 months ago
- Quick ESXi Log Parser☆30Oct 20, 2025Updated 5 months ago
- Development guide for Volatility Plugins☆22Sep 6, 2017Updated 8 years ago
- autoType enable☆36Sep 21, 2019Updated 6 years ago
- "Evolving AppCompat/AmCache data analysis beyond grep"☆209Sep 15, 2021Updated 4 years ago
- The offical exploit for Pandora v7.0NG Post-auth Remote Code Execution CVE-2019-20224☆14Jan 10, 2020Updated 6 years ago
- Evil Reflective DLL Injection Finder☆47Nov 23, 2018Updated 7 years ago
- Parser for Windows PowerShell script block logs☆100Aug 4, 2024Updated last year
- Live hunting of code injection techniques☆385Aug 22, 2019Updated 6 years ago
- Indicator of Compromise Scanner for CVE-2019-19781☆94Mar 25, 2020Updated 5 years ago
- Event metadata collected across all manifest-based ETW providers on Window 10 1903☆32Nov 25, 2019Updated 6 years ago
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- Powershell Empire Persistence finder☆119Jan 30, 2017Updated 9 years ago
- ☆52Sep 17, 2018Updated 7 years ago
- ☆14Sep 22, 2019Updated 6 years ago
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆110Jan 26, 2021Updated 5 years ago
- ☆13Oct 12, 2017Updated 8 years ago
- Scan outlook inbox with yara rules,APIs and IOCs☆14Aug 3, 2018Updated 7 years ago
- PE Import Hash Generator☆79Jul 17, 2017Updated 8 years ago
- Example VBA Macro for MacOS Mojave☆67Oct 31, 2018Updated 7 years ago
- ☆11Mar 12, 2021Updated 5 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Mar 15, 2023Updated 3 years ago
- Historical list of {Cobalt Strike,NanoHTTPD} servers☆120Apr 30, 2019Updated 6 years ago
- ☆14Oct 25, 2019Updated 6 years ago
- Proof-of-Concept exploits for CVE-2017-11882☆41Jan 2, 2018Updated 8 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- A simple parser(library) which extracts shimcache data from windows.☆15May 20, 2019Updated 6 years ago
- Various scrips☆12Oct 19, 2022Updated 3 years ago
- cve-2019-0604 SharePoint RCE exploit☆40Jun 26, 2019Updated 6 years ago
- A lightweight red teaming platform utilizing concurrent nmap scans to populate a collaborative web server.☆23Feb 22, 2026Updated 3 weeks ago
- 轻量化端口扫描工具☆14Dec 2, 2019Updated 6 years ago
- Automation for VirusTotal☆31May 6, 2016Updated 9 years ago
- Use to generate DLL through Visual Studio☆20Jul 24, 2017Updated 8 years ago
- Tools for parsing Forensic images☆41Dec 14, 2018Updated 7 years ago
- Parser for Windows Scheduled Task files.☆13Apr 26, 2023Updated 2 years ago