SafeBreach-Labs / AltFS

Related projects ⓘ

Alternatives and complementary repositories for AltFS

• SafeBreach-Labs / BITSInject
  A one-click tool to inject jobs into the BITS queue (Background Intelligent Transfer Service), allowing arbitrary program execution as th…
  ☆98Updated 5 years ago
• matthastings / PSalander
  ☆51Updated 6 years ago
• zeroSteiner / reflective-polymorphism
  Reflective Polymorphism
  ☆104Updated 6 years ago
• cybercitizen7 / Ps1jacker
  Ps1jacker is a tool for generating COM Hijacking payload.
  ☆61Updated 6 years ago
• mattifestation / BHUSA2018_Sysmon
  All materials from our Black Hat 2018 "Subverting Sysmon" talk
  ☆136Updated 6 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆44Updated 7 years ago
• adm1nPanda / Usb-Analyzer
  Listen for usb devices and automatically submit all files on device to cuckoo
  ☆12Updated 7 years ago
• 0xAnalyst / Sysmon
  Sysmon config for both Windows and Linux Devices. Windows one is a bit dated
  ☆54Updated 4 months ago
• darkquasar / WMI_Persistence
  A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics
  ☆85Updated 7 years ago
• aurel26 / gpocheck
  gpocheck
  ☆30Updated 3 months ago
• skelsec / pypykatz_agent_dn
  Pypykatz agent implemented in .NET
  ☆85Updated 5 years ago
• FuzzySecurity / BH-Arsenal-2019
  SilkETW & SilkService
  ☆40Updated 5 years ago
• matthastings / DSCompromised
  ☆97Updated 8 years ago
• eset / volatility-browserhooks
  Volatility Framework plugin to detect various types of hooks as performed by banking Trojans
  ☆40Updated 5 years ago
• nao-sec / tknk_scanner
  Community-based integrated malware identification system
  ☆82Updated last year
• blacknbunny / peanalyzer
  Advanced Portable Executable File Analyzer And Disassembler 32 & 64 Bit
  ☆99Updated 5 years ago
• DissectMalware / MalwareCMDMonitor
  Shows command lines used by latest instances analyzed on Hybrid-Analysis
  ☆43Updated 6 years ago
• swizzlez / Invoke-EnumSecurityTools
  ☆59Updated 5 years ago
• Arno0x / TCPRelayInjecter
  Tool for injecting a "TCP Relay" managed assembly into unmanaged processes
  ☆116Updated 5 years ago
• Big5-sec / SourceFu
  hopefully a source-to-source deobfuscator, aiming at deobfuscating common scripts languages such as Powershell, VBA and Javascript. Curre…
  ☆40Updated 5 years ago
• G4LB1T / Invoke-NoShell
  All the Power with no Shell
  ☆36Updated 2 years ago
• tyranid / DeviceGuardBypasses
  A repository of some of my Windows 10 Device Guard Bypasses
  ☆133Updated 7 years ago
• nextgens / limacharlie
  Endpoint monitoring stack.
  ☆18Updated 9 years ago
• zznop / pop-nedry
  x86-64 Windows shellcode that recreates the Jurassic Park hacking scene (Ah, ah, ah... you didn't' say the magic word!)
  ☆82Updated 4 years ago
• Neo23x0 / exotron
  Sandbox feature upgrade with the help of wrapped samples
  ☆75Updated 6 years ago
• matthewdunwoody / PS_logging_reg
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Updated 8 years ago
• byt3bl33d3r / Invoke-AutoIt
  Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes
  ☆60Updated 7 years ago