TactiKoolSec/MFT-Detect-Response external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

TactiKoolSec/MFT-Detect-Response

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/TactiKoolSec/MFT-Detect-Response)

Close

TactiKoolSec / MFT-Detect-ResponseView on GitHubMore

• External links
• Readme badge

Common framework for designing a detection and response framework for the most common MFT solutions

☆16Aug 4, 2023Updated 2 years ago

Alternatives and similar repositories for MFT-Detect-Response

Users that are interested in MFT-Detect-Response are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• GDATAAdvancedAnalytics / winreg-tasks

  View on GitHub
  ☆21Jul 4, 2022Updated 3 years ago
• MSAdministrator / msi-utils

  View on GitHub
  A python package that helps with analysis of MSI files
  ☆14Mar 28, 2021Updated 5 years ago
• susMdT / fictional-invention

  View on GitHub
  idk man this was the default github name
  ☆35Apr 23, 2023Updated 3 years ago
• g-les / macho_similarity

  View on GitHub
  Conceptual Methods for Finding Commonalities in Macho Files
  ☆12Mar 21, 2024Updated 2 years ago
• naxonez / Scripts

  View on GitHub
  Random Scripts and Tools
  ☆14Mar 29, 2022Updated 4 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• 0xjet / malsource

  View on GitHub
  The malsource dataset
  ☆13Aug 31, 2021Updated 4 years ago
• ring0x0 / emotet-configs

  View on GitHub
  emotet configs pulled from https://cape.contextis.com/
  ☆15Apr 27, 2022Updated 4 years ago
• center-for-threat-informed-defense / attack-sync

  View on GitHub
  ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® v…
  ☆25Dec 5, 2025Updated 4 months ago
• center-for-threat-informed-defense / defending-ot-with-attack

  View on GitHub
  Defending OT with ATT&CK provides a customized threat collection tailored to the attack surface and threat model of operational technolog…
  ☆14May 28, 2025Updated 11 months ago
• Beercow / SEPparser

  View on GitHub
  Script for parsing Symantec Endpoint Protection logs, VBNs, and ccSubSDK database.
  ☆65Dec 21, 2022Updated 3 years ago
• Atomics-on-A-Friday / Emulation-Tools

  View on GitHub
  ☆32Mar 21, 2023Updated 3 years ago
• keydet89 / Events-Ripper

  View on GitHub
  Project based on RegRipper, to extract add'l value/pivot points from TLN events file
  ☆89Feb 9, 2025Updated last year
• herbiezimmerman / Windows-Event-Logs-With-Event-IDs

  View on GitHub
  A running list of Windows sources and the related event ids.
  ☆19Aug 2, 2023Updated 2 years ago
• petikvx / malwares-analysis-tools

  View on GitHub
  ☆19Jul 29, 2022Updated 3 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• aiforsec22 / IEEEEuroSP23

  View on GitHub
  ☆25Jul 12, 2023Updated 2 years ago
• olafhartong / PockETWatcher

  View on GitHub
  a tiny program to consume from ETW providers for research
  ☆56Jan 4, 2025Updated last year
• forensicmatt / PyWindowsThingies

  View on GitHub
  Windows Thingies in Python for live use.
  ☆24Apr 22, 2019Updated 7 years ago
• nmantani / PS-TrustedDocuments

  View on GitHub
  PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office
  ☆37Mar 15, 2023Updated 3 years ago
• redcode-labs / RedHash

  View on GitHub
  Medusa combo files, Hashcat rules and dictionaries, JRT rules
  ☆14Oct 20, 2022Updated 3 years ago
• timwhitez / Freeze-Common

  View on GitHub
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆14Sep 30, 2022Updated 3 years ago
• Sq00ky / csharp-portscanner

  View on GitHub
  simple C# portscanner - written for playing around with Metasploit's Execute-Assembly
  ☆10Jul 1, 2023Updated 2 years ago
• 0xv1n / macnoise

  View on GitHub
  Extensible MacOS system telemetry generator.
  ☆56Apr 12, 2026Updated 2 weeks ago
• VirtualAlllocEx / Taskschedule-Persistence-Download-Cradles

  View on GitHub
  Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged
  ☆89Jul 7, 2022Updated 3 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• TactiKoolSec / SideLoadHunter

  View on GitHub
  ☆12May 2, 2022Updated 3 years ago
• n1ght-w0lf / pe-unmapper

  View on GitHub
  A small tool to unmap PE memory dumps.
  ☆11Nov 9, 2023Updated 2 years ago
• DarkObb / DeObfuscar-Static

  View on GitHub
  Static Obfuscar Deobfuscator
  ☆21Aug 31, 2019Updated 6 years ago
• DreyAnd / WhoDupMe

  View on GitHub
  ☆13Jun 12, 2023Updated 2 years ago
• msuhanov / regf-samples

  View on GitHub
  Windows registry samples
  ☆24Nov 18, 2018Updated 7 years ago
• Antonlovesdnb / ConstructingDefenseLab

  View on GitHub
  Ludus range for the Constructing Defense Lab
  ☆119Apr 21, 2026Updated last week
• 0x4143 / adversaryemulation-gems

  View on GitHub
  A not so awesome list of adversary emulation gems for aspiring red/blue/purple teamers
  ☆16Jul 19, 2022Updated 3 years ago
• emdnaia / OdinLdr

  View on GitHub
  Cobaltstrike UDRL with memory evasion
  ☆15May 16, 2024Updated last year
• Pascal-0x90 / sideloadr

  View on GitHub
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆57Oct 10, 2022Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• RackReaver / AVMP

  View on GitHub
  A collection of tools for managing and automating vulnerability management.
  ☆13Mar 24, 2022Updated 4 years ago
• X-C3LL / memdlopen-lib

  View on GitHub
  ☆13Dec 29, 2022Updated 3 years ago
• RussianPanda95 / russianpanda95.github.io

  View on GitHub
  ☆12Aug 16, 2024Updated last year
• crtsh / caissuer_monitor

  View on GitHub
  CA Issuers Monitor (Authority Info Access)
  ☆14Mar 8, 2023Updated 3 years ago
• google / aura-inspector

  View on GitHub
  ☆90Mar 5, 2026Updated last month
• CyberDefend3r / PowerShell-Deobfuscation-Exercise

  View on GitHub
  An exercise to practice deobfuscating PowerShell Scripts.
  ☆26Feb 10, 2023Updated 3 years ago
• WesSec / VelociDeploy-o-Matic

  View on GitHub
  Scripts to for ready-to-use Velociraptor instance deployment in Azure
  ☆14Jun 27, 2023Updated 2 years ago