abelcheung / rifiuti2Links
Windows Recycle Bin analyser
☆148Updated last month
Alternatives and similar repositories for rifiuti2
Users that are interested in rifiuti2 are comparing it to the libraries listed below
Sorting:
- Parser for $UsnJrnl on NTFS☆111Updated 2 years ago
- exe2powershell - exe2bat reborn for modern Windows☆172Updated 4 years ago
- Windows Credentials Editor v1.3beta☆109Updated 5 years ago
- Commandline low level file extractor for NTFS☆287Updated 5 years ago
- Windows Shortcut file (LNK) parser☆134Updated 2 years ago
- Toolset for research malware and Cobalt Strike beacons☆211Updated 2 months ago
- Allows you to quickly query a Windows machine for RAM artifacts☆221Updated 4 years ago
- Powershell script for enumerating vulnerable DCOM Applications☆258Updated 6 years ago
- Web-based check for Windows privesc vulnerabilities☆139Updated 2 years ago
- Cross-platform, open-source shellbag parser☆149Updated 2 years ago
- ☆91Updated 2 years ago
- Tool to extract the $UsnJrnl from an NTFS volume☆106Updated 5 years ago
- Parse evtx files and detect use of the DanderSpritz eventlogedit module☆148Updated 7 years ago
- Netview enumerates systems using WinAPI calls☆295Updated 3 years ago
- The oledump-contrib repository contains plugins and enhancements for the oledump tool published by Didier Stevens.☆54Updated 9 years ago
- Windows DPAPI laboratory☆91Updated 7 years ago
- Dump various types of Windows credentials without injecting in any process.☆424Updated 2 years ago
- Windows RID Hijacking persistence technique☆174Updated 6 months ago
- Remote Command Executor: A OSS replacement for PsExec and RunAs - or Telnet without having to install a server. Take your pick :)☆348Updated 7 years ago
- Digital forensic acquisition tool for Windows based incident response.☆341Updated last year
- ☆347Updated 3 years ago
- PoC code for CVE-2019-0841 Privilege Escalation vulnerability☆240Updated 6 years ago
- Parser for $LogFile on NTFS☆196Updated this week
- This is a Python port of lnk-parse-1.0, a tool to parse Windows .lnk files.☆77Updated 2 years ago
- I created the python script to bypass UAC to get system shell .☆122Updated 5 years ago
- This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.☆202Updated 4 years ago
- A Bind Shell Using the Fax Service and a DLL Hijack☆331Updated 5 years ago
- This tool can be used during internal penetration testing to dump Windows credentials from an already-compromised host. It allows one to …☆109Updated 5 years ago
- PrintDemon is a PoC for a series of issues in the Windows Print Spooler service, as well as potetial misuses of the functionality.☆201Updated 5 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆170Updated 3 months ago