airbus-cert / cacdec
The hidden mstsc recorder player
☆28Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for cacdec
- A PowerShell script to prevent Sysmon from writing its events☆14Updated 4 years ago
- A collection of tools for debugging Windows application crashes.☆9Updated 2 years ago
- ☆26Updated 6 years ago
- ☆33Updated 5 years ago
- All TMF files that I extracted from Microsoft PDBs.☆12Updated 5 years ago
- module for certexfil☆15Updated 2 years ago
- This is a simple tool to dump all the reparse points on an NTFS volume.☆31Updated 4 years ago
- Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes☆60Updated 7 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆44Updated 7 years ago
- ☆36Updated 5 years ago
- A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection☆28Updated 4 years ago
- Dumping credentials through windbg and pykd☆38Updated last year
- ☆24Updated 6 years ago
- This project provides Base64 encoding and decoding functionality to PowerShell within Constrained Language Mode☆22Updated 4 months ago
- Crystal Anti-Exploit Protection 2012☆35Updated 4 years ago
- Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…☆11Updated 5 years ago
- PE File Blessing - To continue or not to continue☆86Updated 4 years ago
- The Multiplatform Linux Sandbox☆15Updated 10 months ago
- A tool to create COM class/interface relationships in neo4j☆47Updated 2 years ago
- ☆41Updated 5 years ago
- A Canary which fires when uninstalled☆34Updated 3 years ago
- Run Managed Assemblies with RunDll☆16Updated 6 years ago
- RemotePSpy provides live monitoring of remote PowerShell sessions, which is particularly useful for older (pre-5.0) versions of PowerShel…☆18Updated 4 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆25Updated 4 years ago
- InsecurePowerShellHost is a .NET Core host process for InsecurePowerShell, a version of PowerShell Core v6.0.0 with key security features…☆30Updated 6 years ago
- Set of ultra technical notes about AD☆18Updated 6 years ago