Alternatives and similar repositories for PSDecode:

Users that are interested in PSDecode are comparing it to the libraries listed below

• danielbohannon / Revoke-Obfuscation
  PowerShell Obfuscation Detection Framework
  ☆728Updated last year
• davidpany / WMI_Forensics
  ☆297Updated 4 years ago
• mandiant / ShimCacheParser
  ☆274Updated last year
• JPCERTCC / ToolAnalysisResultSheet
  Tool Analysis Result Sheet
  ☆346Updated 7 years ago
• mandiant / flare-wmi
  ☆419Updated last year
• DissectMalware / XLMMacroDeobfuscator
  Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)
  ☆574Updated 8 months ago
• JPCERTCC / MalConfScan
  Volatility plugin for extracts configuration data of known malware
  ☆482Updated last year
• travisfoley / dfirtriage
  Digital forensic acquisition tool for Windows based incident response.
  ☆336Updated 8 months ago
• beahunt3r / Windows-Hunting
  ☆348Updated 3 years ago
• felixweyne / imaginaryC2
  Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …
  ☆447Updated 2 years ago
• ANSSI-FR / bmc-tools
  RDP Bitmap Cache parser
  ☆496Updated last week
• sbousseaden / Slides
  Misc Threat Hunting Resources
  ☆372Updated 2 years ago
• danielbohannon / Invoke-CradleCrafter
  PowerShell Remote Download Cradle Generator & Obfuscator
  ☆824Updated 6 years ago
• mandiant / SilkETW
  ☆746Updated last year
• gleeda / memtriage
  Allows you to quickly query a Windows machine for RAM artifacts
  ☆218Updated 4 years ago
• chenerlich / FCL
  FCL (Fileless Command Lines) - Known command lines of fileless malicious executions
  ☆464Updated 3 years ago
• JPCERTCC / SysmonSearch
  Investigate suspicious activity by visualizing Sysmon's event log
  ☆419Updated last year
• mitre-attack / attack-arsenal
  A collection of red team and adversary emulation resources developed and released by MITRE.
  ☆494Updated 3 years ago
• n0dec / MalwLess
  Test Blue Team detections without running any attack.
  ☆271Updated 8 months ago
• decalage2 / ViperMonkey
  A VBA parser and emulation engine to analyze malicious macros.
  ☆1,065Updated 6 months ago
• carbonblack / tau-tools
  A repo containing tools developed by Carbon Black's Threat Research Team: Threat Analysis Unit
  ☆232Updated 3 years ago
• MHaggis / sysmon-dfir
  Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
  ☆906Updated last year
• leechristensen / UnmanagedPowerShell
  Executes PowerShell from an unmanaged process
  ☆476Updated 8 years ago
• Infocyte / PSHunt
  Powershell Threat Hunting Module
  ☆282Updated 8 years ago
• StrangerealIntel / DailyIOC
  IOC from articles, tweets for archives
  ☆312Updated last year
• williballenthin / EVTXtract
  EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.
  ☆192Updated 4 years ago
• TonyPhipps / Meerkat
  A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
  ☆441Updated 2 months ago
• Cyb3rWard0g / Invoke-ATTACKAPI
  A PowerShell script to interact with the MITRE ATT&CK Framework via its own API
  ☆366Updated 5 years ago
• nccgroup / Cyber-Defence
  Information released publicly by NCC Group's Cyber Incident Response Team
  ☆476Updated 3 years ago
• ubeeri / Invoke-UserSimulator
  Simulates common user behaviour on local and remote Windows hosts.
  ☆283Updated 6 years ago