PowerShell script for hunting webshells on Microsoft Exchange Servers.
☆56Feb 1, 2017Updated 9 years ago
Alternatives and similar repositories for Invoke-ExchangeWebShellHunter
Users that are interested in Invoke-ExchangeWebShellHunter are comparing it to the libraries listed below
Sorting:
- BackdoorMan is a toolkit that helps you find malicious, hidden and suspicious PHP scripts and shells in a chosen destination.☆77Dec 13, 2022Updated 3 years ago
- Konrads' Pen-Ultimate (Windows) Log File Parser☆14Dec 27, 2025Updated 2 months ago
- Evil Inject Finder Remote Capability and Parser☆11Nov 22, 2018Updated 7 years ago
- The offical exploit for Pandora v7.0NG Post-auth Remote Code Execution CVE-2019-20224☆14Jan 10, 2020Updated 6 years ago
- ☆11Mar 12, 2021Updated 4 years ago
- A lightweight red teaming platform utilizing concurrent nmap scans to populate a collaborative web server.☆23Updated this week
- Quick ESXi Log Parser☆29Oct 20, 2025Updated 4 months ago
- autoType enable☆36Sep 21, 2019Updated 6 years ago
- Scan outlook inbox with yara rules,APIs and IOCs☆14Aug 3, 2018Updated 7 years ago
- ☆479Nov 28, 2025Updated 2 months ago
- A simple parser(library) which extracts shimcache data from windows.☆15May 20, 2019Updated 6 years ago
- "Evolving AppCompat/AmCache data analysis beyond grep"☆209Sep 15, 2021Updated 4 years ago
- Event metadata collected across all manifest-based ETW providers on Window 10 1903☆31Nov 25, 2019Updated 6 years ago
- Development guide for Volatility Plugins☆22Sep 6, 2017Updated 8 years ago
- ☆13Oct 12, 2017Updated 8 years ago
- ☆14Oct 25, 2019Updated 6 years ago
- ☆14Sep 22, 2019Updated 6 years ago
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- A GC link parser for both linkfiles and jumplists.☆18Oct 28, 2016Updated 9 years ago
- My musings with C#☆28Dec 23, 2022Updated 3 years ago
- Example VBA Macro for MacOS Mojave☆67Oct 31, 2018Updated 7 years ago
- Indicator of Compromise Scanner for CVE-2019-19781☆94Mar 25, 2020Updated 5 years ago
- Use to generate DLL through Visual Studio☆20Jul 24, 2017Updated 8 years ago
- A better alternative to RunDLL32☆35Jun 11, 2019Updated 6 years ago
- Parser for Windows PowerShell script block logs☆100Aug 4, 2024Updated last year
- Historical list of {Cobalt Strike,NanoHTTPD} servers☆120Apr 30, 2019Updated 6 years ago
- Demos of Donut used in conferences, etc. Mostly for my use, but free for others to use as a reference.☆32Nov 6, 2019Updated 6 years ago
- 轻量化端口扫描工具☆14Dec 2, 2019Updated 6 years ago
- PE Import Hash Generator☆79Jul 17, 2017Updated 8 years ago
- Live hunting of code injection techniques☆385Aug 22, 2019Updated 6 years ago
- Hide .Net assembly into png images☆36Aug 11, 2019Updated 6 years ago
- Silencing Sysmon via driver unload☆235Oct 13, 2022Updated 3 years ago
- Pure Python parser for Application Compatibility Shim Databases (.sdb files)☆110Jan 26, 2021Updated 5 years ago
- ☆21Dec 1, 2019Updated 6 years ago
- ConventionEngine - A Yara Rulepack for PDB Path Hunting☆37Mar 15, 2023Updated 2 years ago
- ☆50Sep 11, 2019Updated 6 years ago
- geolocate ip addresses in IIS logs☆20Jan 8, 2025Updated last year
- Indicators of compromise relating to our report on APT10's targeting of global MSPs☆10Sep 26, 2017Updated 8 years ago
- The mission of Black Lotus Labs is to leverage our network visibility to both help protect customers and keep the internet clean.☆12Jun 18, 2021Updated 4 years ago