TactiKoolSec/MFT-Detect-Response external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

TactiKoolSec/MFT-Detect-Response

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/TactiKoolSec/MFT-Detect-Response)

Close

TactiKoolSec / MFT-Detect-ResponseView on GitHubMore

• External links
• Readme badge

Common framework for designing a detection and response framework for the most common MFT solutions

☆16Aug 4, 2023Updated 2 years ago

Alternatives and similar repositories for MFT-Detect-Response

Users that are interested in MFT-Detect-Response are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• GDATAAdvancedAnalytics / winreg-tasks

  View on GitHub
  ☆21Jul 4, 2022Updated 3 years ago
• MSAdministrator / msi-utils

  View on GitHub
  A python package that helps with analysis of MSI files
  ☆14Mar 28, 2021Updated 5 years ago
• susMdT / fictional-invention

  View on GitHub
  idk man this was the default github name
  ☆35Apr 23, 2023Updated 2 years ago
• g-les / macho_similarity

  View on GitHub
  Conceptual Methods for Finding Commonalities in Macho Files
  ☆12Mar 21, 2024Updated 2 years ago
• NexusFuzzy / AzoDecrypt

  View on GitHub
  Script which is able to decrypt data sent to AzoRult 3.3 Server
  ☆11Feb 5, 2021Updated 5 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• mandiant / rpdebug_qnx

  View on GitHub
  ☆14Jun 1, 2023Updated 2 years ago
• 0xjet / malsource

  View on GitHub
  The malsource dataset
  ☆13Aug 31, 2021Updated 4 years ago
• ring0x0 / emotet-configs

  View on GitHub
  emotet configs pulled from https://cape.contextis.com/
  ☆15Apr 27, 2022Updated 3 years ago
• center-for-threat-informed-defense / attack-sync

  View on GitHub
  ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® v…
  ☆24Dec 5, 2025Updated 4 months ago
• center-for-threat-informed-defense / defending-ot-with-attack

  View on GitHub
  Defending OT with ATT&CK provides a customized threat collection tailored to the attack surface and threat model of operational technolog…
  ☆13May 28, 2025Updated 10 months ago
• Beercow / SEPparser

  View on GitHub
  Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
  ☆65Dec 21, 2022Updated 3 years ago
• keydet89 / Events-Ripper

  View on GitHub
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆89Feb 9, 2025Updated last year
• herbiezimmerman / Windows-Event-Logs-With-Event-IDs

  View on GitHub
  A running list of Windows sources and the related event ids.
  ☆19Aug 2, 2023Updated 2 years ago
• lolfsaas / lolfsaas.github.io

  View on GitHub
  Living of the Land of Free SaaS
  ☆69Mar 22, 2026Updated 2 weeks ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• petikvx / malwares-analysis-tools

  View on GitHub
  ☆19Jul 29, 2022Updated 3 years ago
• aiforsec22 / IEEEEuroSP23

  View on GitHub
  ☆25Jul 12, 2023Updated 2 years ago
• dirkjanm / family-of-client-ids-research

  View on GitHub
  Research into Undocumented Behavior of Azure AD Refresh Tokens
  ☆13Oct 27, 2023Updated 2 years ago
• olafhartong / PockETWatcher

  View on GitHub
  a tiny program to consume from ETW providers for research
  ☆55Jan 4, 2025Updated last year
• forensicmatt / PyWindowsThingies

  View on GitHub
  Windows Thingies in Python for live use.
  ☆24Apr 22, 2019Updated 6 years ago
• nmantani / PS-TrustedDocuments

  View on GitHub
  PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office
  ☆37Mar 15, 2023Updated 3 years ago
• timwhitez / Freeze-Common

  View on GitHub
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆14Sep 30, 2022Updated 3 years ago
• Sq00ky / csharp-portscanner

  View on GitHub
  simple C# portscanner - written for playing around with Metasploit's Execute-Assembly
  ☆10Jul 1, 2023Updated 2 years ago
• redcode-labs / RedHash

  View on GitHub
  Medusa combo files, Hashcat rules and dictionaries, JRT rules
  ☆14Oct 20, 2022Updated 3 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• 0xv1n / macnoise

  View on GitHub
  Extensible MacOS system telemetry generator.
  ☆56Mar 1, 2026Updated last month
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles

  View on GitHub
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆89Jul 7, 2022Updated 3 years ago
• TactiKoolSec / SideLoadHunter

  View on GitHub
  ☆12May 2, 2022Updated 3 years ago
• n1ght-w0lf / pe-unmapper

  View on GitHub
  A small tool to unmap PE memory dumps.
  ☆11Nov 9, 2023Updated 2 years ago
• acidvegas / pastebin

  View on GitHub
  python wrapper for the pastebin api
  ☆23Jan 21, 2024Updated 2 years ago
• DarkObb / DeObfuscar-Static

  View on GitHub
  Static Obfuscar Deobfuscator
  ☆22Aug 31, 2019Updated 6 years ago
• DreyAnd / WhoDupMe

  View on GitHub
  ☆13Jun 12, 2023Updated 2 years ago
• msuhanov / regf-samples

  View on GitHub
  Windows registry samples
  ☆24Nov 18, 2018Updated 7 years ago
• Antonlovesdnb / ConstructingDefenseLab

  View on GitHub
  Ludus range for the Constructing Defense Lab
  ☆117Updated this week
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• 0xflux / Scil

  View on GitHub
  System Call Integrity Layer - experimental security research
  ☆25Jan 31, 2026Updated 2 months ago
• 0x4143 / adversaryemulation-gems

  View on GitHub
  A not so awesome list of adversary emulation gems for aspiring red/blue/purple teamers
  ☆16Jul 19, 2022Updated 3 years ago
• Pascal-0x90 / sideloadr

  View on GitHub
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆57Oct 10, 2022Updated 3 years ago
• digitranslab / allama

  View on GitHub
  🔥🔥🔥 AI security automation platform. Build visual workflows, deploy autonomous agents, and automate threat detection and response. 80+…
  ☆93Feb 11, 2026Updated 2 months ago
• emdnaia / OdinLdr

  View on GitHub
  Cobaltstrike UDRL with memory evasion
  ☆15May 16, 2024Updated last year
• NUSGreyhats / greyctf24-challs-public

  View on GitHub
  ☆15Jul 28, 2024Updated last year
• mthbernardes / fsudo

  View on GitHub
  Steal users password with a fake sudo function.
  ☆43Feb 29, 2024Updated 2 years ago