adamcysec / SentinelOne-PowerSploit-Indicators

Related projects ⓘ

Alternatives and complementary repositories for SentinelOne-PowerSploit-Indicators

• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆20Updated 2 months ago
• evild3ad / Get-MiniTimeline
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆26Updated 5 months ago
• dwmetz / PSHero
  PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
  ☆35Updated last year
• nmantani / PS-TrustedDocuments
  PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office
  ☆34Updated last year
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆25Updated 6 months ago
• humio / security_monitoring
  ☆40Updated last year
• zaneGittins / Huntress
  PowerShell tool to triage systems
  ☆12Updated last year
• QueenSquishy / Zombie
  General Content
  ☆20Updated 4 months ago
• svch0stz / velociraptor-detections
  ☆19Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆90Updated 2 years ago
• CyberCX-DFIR / usnjrnl_rewind
  USN Journal full path builder
  ☆36Updated 2 months ago
• MagnetForensics / Magnet-RESPONSE-PowerShell
  PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.
  ☆22Updated 6 months ago
• agreenjay / sysmon
  A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data
  ☆40Updated 4 years ago
• EricZimmerman / Sum
  ☆19Updated 2 months ago
• woanware / etw-event-dumper
  ☆31Updated 2 years ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated last year
• EricZimmerman / TLEFilePlugins
  Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…
  ☆22Updated 2 weeks ago
• randomaccess3 / detections
  ☆34Updated 3 weeks ago
• bittib010 / AjourVolAutolity
  A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.
  ☆15Updated 3 weeks ago
• rj-chap / ransomware_tips
  Random tips and tricks RE: ransomware
  ☆14Updated 3 years ago
• stvemillertime / RonnieColemanYARAParser
  An experimental script to perform bulk parsing of arbitrary file features with YARA and console logging.
  ☆21Updated 2 years ago
• EricZimmerman / RBCmd
  Recycle bin artifact parser
  ☆36Updated 2 months ago
• jsecurity101 / Automated-Detection-Pipeline
  ☆15Updated 3 years ago
• PlumHound / PlumHound-Tasks
  Community Tasks/Plans for PlumHound Queueing
  ☆23Updated last year
• svch0stz / TheThreatHuntLibrary
  Library of threat hunts to get any user started!
  ☆40Updated 4 years ago
• kacos2000 / Evtx_Log_Browser
  Evtx Log (xml) Browser
  ☆55Updated last year