H4NM / WhoYouCallingLinks
Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.
☆444Updated 6 months ago
Alternatives and similar repositories for WhoYouCalling
Users that are interested in WhoYouCalling are comparing it to the libraries listed below
Sorting:
- Nuke It From Orbit - remove AV/EDR with physical access☆267Updated 10 months ago
- PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.☆320Updated 6 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆439Updated last week
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆380Updated last month
- ScriptSentry finds misconfigured and dangerous logon scripts.☆605Updated 10 months ago
- An ADCS honeypot to catch attackers in your internal network.☆312Updated last year
- Wireshark RDP resources☆216Updated 5 months ago
- A GUI and CLI tool for removing bloat from executables☆432Updated 3 months ago
- A repository of credential stealer formats☆229Updated 4 months ago
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆179Updated 5 months ago
- A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities☆682Updated last year
- ☆511Updated last year
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆279Updated last week
- PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs…☆216Updated last year
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆197Updated 2 weeks ago
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆397Updated last year
- ☆262Updated 2 months ago
- A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges.☆617Updated 2 weeks ago
- Ludus is a system to build easy to use cyber environments, or "ranges" for testing and development.☆70Updated last year
- ☆165Updated 2 years ago
- ☆244Updated 4 months ago
- ☆203Updated last year
- Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…☆1,042Updated this week
- VirtualGHOST Detection Tool☆95Updated last year
- MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR☆682Updated last week
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆256Updated last year
- A lightweight PowerShell tool for assessing the security posture of Microsoft Entra ID environments. It helps identify privileged object…☆273Updated last month
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆405Updated last month
- Python tool to check rootkits in Windows kernel☆201Updated 2 months ago
- Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.☆204Updated this week