JohnLaTwC / PyPowerShellXray
Python script to decode common encoded PowerShell scripts
☆216Updated 6 years ago
Alternatives and similar repositories for PyPowerShellXray:
Users that are interested in PyPowerShellXray are comparing it to the libraries listed below
- Reconstruct process trees from event logs☆147Updated 4 years ago
- IR-Tools - PowerShell tools for IR☆130Updated 7 years ago
- ☆349Updated 3 years ago
- PowerShell No Agent Hunting☆109Updated 6 years ago
- Query and report user logons relations from MS Windows Security Events☆242Updated 6 years ago
- Command line tool for scanning streams within office documents plus xor db attack☆126Updated last year
- Cuckoo Sandbox is an automated dynamic malware analysis system☆107Updated 4 years ago
- ☆108Updated 7 years ago
- Allows you to quickly query a Windows machine for RAM artifacts☆220Updated 4 years ago
- Malware Repository Framework☆100Updated 7 years ago
- Page File analysis tools.☆126Updated 9 years ago
- Mystique may be used to discover infection markers that can be used to vaccinate endpoints against malware. It receives as input a malici…☆82Updated 7 years ago
- VolatilityBot – An automated memory analyzer for malware samples and memory dumps☆264Updated 3 years ago
- Automated, Collection, and Enrichment Platform☆324Updated 5 years ago
- A powershell script for creating a Windows honeyport.☆87Updated 9 years ago
- A collection of scripts to initialize a windows VM to run all the malwares!☆106Updated 4 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆115Updated 9 months ago
- Codex Gigas malware DNA profiling search engine discovers malware patterns and characteristics assisting individuals who are attracted in…☆154Updated 5 years ago
- Differential Analysis of Malware in Memory☆211Updated 7 years ago
- Windows Live Artifacts Acquisition Script☆186Updated 2 years ago
- All materials from our Black Hat 2018 "Subverting Sysmon" talk☆136Updated 6 years ago
- Lazy Office Analyzer☆119Updated 8 years ago
- Sandbox feature upgrade with the help of wrapped samples☆76Updated 6 years ago
- ☆82Updated 8 years ago
- Test Blue Team detections without running any attack.☆272Updated 10 months ago
- ☆134Updated 6 years ago
- A warehouse for your malware☆134Updated 11 years ago
- Some PowerShell Defensive Scripts☆127Updated 8 years ago
- Invoke-LiveResponse☆146Updated 3 years ago
- Tools from WFA 4/e, timeline tools, etc.☆135Updated last year