Immersive-Labs-Sec / msrc-apiLinks
A collection of tools to interact with Microsoft Security Response Center API
☆98Updated last year
Alternatives and similar repositories for msrc-api
Users that are interested in msrc-api are comparing it to the libraries listed below
Sorting:
- ☆190Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆95Updated last year
- Execute PowerShell code at the antimalware-light protection level.☆141Updated 2 years ago
- Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR☆242Updated 2 months ago
- Cobalt Strike Beacon configuration extractor and parser.☆153Updated 3 years ago
- Default Detections for EDR☆96Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆94Updated 2 years ago
- Identify the attack paths in BloodHound breaking your AD tiering☆321Updated 2 years ago
- ☆208Updated 3 years ago
- Active C&C Detector☆154Updated last year
- ☆217Updated 3 years ago
- ☆250Updated last year
- Yara Rules for Modern Malware☆77Updated last year
- SpecterOps Presentations☆204Updated last month
- Pushes Sysmon Configs☆88Updated 4 years ago
- A repository that maps commonly used attacks using MSRPC protocols to ATT&CK☆331Updated 2 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆167Updated 2 years ago
- Sysmon EDR POC Build within Powershell to prove ability.☆225Updated 4 years ago
- Project for identifying executables that have command-line options that can be obfuscated, possibly bypassing detection rules.☆174Updated 5 months ago
- Fraktal's Ransomware Emulator☆102Updated last year
- My conference presentations☆66Updated last year
- The Github project for The Defender's Guide by Luke Paine and Jonathan Johnson☆154Updated 2 years ago
- A collection of Powershell scripts that will help automate the build process for a Marvel domain.☆147Updated last year
- ☆201Updated 7 months ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Active C2 IoCs☆99Updated 2 years ago
- GolenGMSA tool for working with GMSA passwords☆150Updated this week
- Blueteam operational triage registry hunting/forensic tool.☆148Updated 2 years ago
- A C# based tool for analysing malicious OneNote documents☆114Updated 2 years ago
- YARA rule analyzer to improve rule quality and performance☆102Updated 2 months ago