Velocidex / go-prefetch
A golang implementation of a prefetch parser.
☆19Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for go-prefetch
- Presentation materials for talks I've given.☆20Updated 5 years ago
- Trace ScriptBlock execution for powershell v2☆39Updated 4 years ago
- Set of utilities for getting information about Windows Events☆15Updated 6 years ago
- various slides and presentations I've worked on☆18Updated 8 months ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Updated 5 years ago
- event shipper for Carbon Black Defense notifications☆10Updated last year
- Links to malware-related YARA rules☆14Updated 2 years ago
- A cross platform tool for verifying credentials and executing single commands☆32Updated 5 years ago
- A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed☆16Updated 8 years ago
- GoLang Scripting Expert, a repo for template scripts regarding basic golang functions, many with a security focus☆22Updated 4 years ago
- Steezy - Ghetto Yara Generation☆15Updated last year
- Force-Directed Graph Generator for Volatility Ouputs☆26Updated 5 years ago
- Scripts to help hunt for possible golden/silver TGT tickets☆16Updated 7 years ago
- D-Scan project for office document analysis and generating flow diagram of macro in documents. For demo visit☆29Updated this week
- C# User Simulation☆33Updated 2 years ago
- Proof of concept communications from C# via a web browser process☆21Updated 5 years ago
- ☆51Updated 6 years ago
- Royal APT - APT15 - Related Information from NCC Group Cyber Defense Operations Research☆53Updated 6 years ago
- Yara rules☆19Updated last year
- Cobalt Strike log state tracking, parsing, and storage☆22Updated 5 years ago
- SilkETW & SilkService☆40Updated 5 years ago
- Threat hunting with EQL and Bro. This repo contains modifications to EQL and EQLLib to use BRO logs.☆8Updated 5 years ago
- Server for receiving autorun data from the clients☆13Updated 7 years ago
- ☆31Updated 4 years ago
- Network detector for Winnti malware☆20Updated 6 years ago
- ☆33Updated 4 years ago
- Generate bulk YARA rules from YAML input☆22Updated 4 years ago
- Generate YARA rules for OOXML documents.☆37Updated last year