Trace ScriptBlock execution for powershell v2
☆40Jan 14, 2020Updated 6 years ago
Alternatives and similar repositories for PSTrace
Users that are interested in PSTrace are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆42Sep 16, 2022Updated 3 years ago
- A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data☆39Mar 23, 2020Updated 6 years ago
- ☆21Jun 3, 2021Updated 5 years ago
- A simple parser(library) which extracts shimcache data from windows.☆16May 20, 2019Updated 7 years ago
- Microsoft decompiled IrDA drivers☆16Apr 15, 2015Updated 11 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A modern Python-3-based alternative to RegRipper☆215May 12, 2026Updated last month
- ☆17Jul 4, 2019Updated 7 years ago
- A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/☆31Feb 26, 2024Updated 2 years ago
- A rewrite of mactime, a bodyfile reader☆41Aug 5, 2024Updated last year
- Sample use cases of the .NET native code hooking technique☆222Feb 9, 2018Updated 8 years ago
- Walks through the 4-level paging structures in Windows x64☆14Feb 12, 2023Updated 3 years ago
- A POC for Windows Extension Host hooking☆24Jul 13, 2019Updated 6 years ago
- A C# tool for enumerating remote access policies through group policy.☆73Apr 18, 2019Updated 7 years ago
- A Splunk Technology Add-on to forward filtered ETW events.☆31Oct 14, 2020Updated 5 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- An IDA plugin to deal with Event Tracing for Windows (ETW)☆55Jul 8, 2022Updated 3 years ago
- GCNotify is an Outlook addin for quickly forwarding mail as attachment to a pre-defined e-mail address.☆12Jan 17, 2023Updated 3 years ago
- PowerShell Pass The Hash Utils☆16Dec 9, 2018Updated 7 years ago
- Powershell Module Template with GitHub, PowerShellGallery and AppVeyor.☆13Oct 7, 2019Updated 6 years ago
- Open-source EDR kernel-component for system monitoring and DLL injection☆33Nov 14, 2020Updated 5 years ago
- A DFIR tool to collect artifacts on macOS☆57Mar 1, 2020Updated 6 years ago
- A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed☆17Jun 20, 2016Updated 10 years ago
- Proof of concept VBA code to add to Normal.dot to put restrictions on Word☆40Dec 20, 2016Updated 9 years ago
- A series of GPO templates☆21Jan 2, 2017Updated 9 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Helper functions for calculating the authenticode digest for a portable executable file☆21Apr 30, 2020Updated 6 years ago
- Détection d'anomalie à partir des journaux d'authentification Windows☆18Apr 16, 2021Updated 5 years ago
- Build a phishing server (Gophish) together with SMTP-redirector (Postfix) automatically in Digital Ocean with terraform and ansible..☆20Jul 7, 2021Updated 4 years ago
- Security Advisories☆11Sep 22, 2019Updated 6 years ago
- Elasticsearch/Kibana environment and log data for Sigma workshop☆27Dec 20, 2019Updated 6 years ago
- Volatility plugins created by the author☆44Oct 2, 2015Updated 10 years ago
- Suricata rules to detect Winnti communication☆16Mar 5, 2018Updated 8 years ago
- Popular driver source with guarded regions bypass☆14Nov 12, 2022Updated 3 years ago
- Presentations and example code from various sessions.☆22Sep 28, 2020Updated 5 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Tools for analysing the forward DNS data set published at https://scans.io/study/sonar.fdns_v2☆17May 9, 2026Updated last month
- AMSI Bypass Via the Heap☆107Nov 20, 2020Updated 5 years ago
- PAC HTTPS leak demo from DEF CON 24 'Toxic Proxies' talk☆30Oct 4, 2016Updated 9 years ago
- Work in Progress repo☆16Apr 18, 2019Updated 7 years ago
- Nmap Script to scan for Winnti infections☆71May 22, 2018Updated 8 years ago
- Access a PowerShell instance from anywhere using Websockets and Cloudflare Quick Tunnels☆44Jun 19, 2023Updated 3 years ago
- Event metadata collected across all manifest-based ETW providers on Window 10 1903☆32Nov 25, 2019Updated 6 years ago