PowerDecode is a PowerShell-based tool that allows to deobfuscate PowerShell scripts obfuscated across multiple layers. The tool performs code dynamic analysis, extracting malware hosting URLs and checking http response.It can also detect if the malware attempts to inject shellcode into memory.
☆237Apr 28, 2024Updated 2 years ago
Alternatives and similar repositories for PowerDecode
Users that are interested in PowerDecode are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- PowerShell script for deobfuscating encoded PowerShell scripts☆438Feb 4, 2021Updated 5 years ago
- Volatility 3 Plugins☆21Oct 3, 2022Updated 3 years ago
- A tool for de-obfuscating PowerShell scripts☆71Apr 24, 2019Updated 7 years ago
- A C2 framework inspired by anime, made in python.☆12Feb 8, 2026Updated 4 months ago
- A guide to using Azure Data Explorer and KQL for DFIR☆124May 16, 2022Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- MS Graph Commands and Tools for Blue Teamers☆51Feb 4, 2026Updated 4 months ago
- Help deobfuscate VBScript☆18Jul 1, 2022Updated 4 years ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆486Oct 29, 2025Updated 8 months ago
- ☆209May 10, 2026Updated last month
- Rapidly Search and Hunt through Windows Forensic Artefacts☆3,573May 9, 2026Updated last month
- Enumeration & fingerprint tool☆24Jun 20, 2026Updated last week
- ☆20Oct 23, 2020Updated 5 years ago
- Artifact collection tool for *nix systems☆219Mar 20, 2024Updated 2 years ago
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆637Jun 20, 2026Updated last week
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Evtx Log (xml) Browser☆59Mar 12, 2023Updated 3 years ago
- Scripts and a short guide for using them to tier an Active Directory. Made for BSides Copenhagen 2024☆41Oct 20, 2025Updated 8 months ago
- ☆14Sep 26, 2023Updated 2 years ago
- Go fastcall analysis for ida decompiler☆48Jun 25, 2025Updated last year
- Adversary Simulation Framework☆41Aug 19, 2025Updated 10 months ago
- A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs☆827May 30, 2026Updated last month
- A powershell parser for https://github.com/ufrisk/MemProcFS☆45May 12, 2021Updated 5 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆92Mar 11, 2026Updated 3 months ago
- IDA plugin to deobfuscate emotet CFF☆18Apr 26, 2022Updated 4 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- A curated list of KAPE-related resources☆189May 1, 2025Updated last year
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆113Aug 26, 2024Updated last year
- A standalone DLL that exports databases in cleartext once injected in the KeePass process.☆299Mar 1, 2023Updated 3 years ago
- Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows…☆2,134Dec 11, 2024Updated last year
- Windows symbol tables for Volatility 3☆96Jul 11, 2024Updated last year
- An ADCS honeypot to catch attackers in your internal network.☆330Jun 27, 2024Updated 2 years ago
- NTFS file system specimens☆13May 21, 2026Updated last month
- IDA plugin helping reverse-engineering rust binaries☆35Jul 31, 2024Updated last year
- Klara docker compose☆11May 19, 2020Updated 6 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Practical Windows Forensics Training☆767Feb 16, 2026Updated 4 months ago
- Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.☆3,227Jun 24, 2026Updated last week
- GarbageMan is a set of tools for analyzing .NET binaries through heap analysis.☆121Apr 8, 2023Updated 3 years ago
- Defeating Anti-Debugging Techniques for Malware Analysis☆12Oct 1, 2022Updated 3 years ago
- Repository to publish sample use cases, templates, solutions, automations for Microsoft Defender Threat Intelligence (MDTI) product☆82Sep 9, 2024Updated last year
- A powerful macOS triage collection tool designed for forensic analysis. It gathers critical system artifacts such as FSEvents, Spotlight,…☆45Oct 24, 2025Updated 8 months ago
- FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is de…☆822Apr 18, 2026Updated 2 months ago