brad-anton / extension_finder

Related projects ⓘ

Alternatives and complementary repositories for extension_finder

• JamesHabben / sysmon-queries
  Queries to parse sysmon event log file with microsoft logparser
  ☆56Updated 9 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆39Updated 7 years ago
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆19Updated last year
• Invoke-IR / Presentations
  ☆30Updated 8 years ago
• hardwaterhacker / scandiff
  Scandiff is a PowerShell script to automate host discovery and scanning with nmap. After discovering and scanning hosts, scandiff perfor…
  ☆17Updated 10 years ago
• neu5ron / WinLogsZero2Hero
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆21Updated 6 years ago
• mdegrazia / Google-Analytic-Cookie-Cruncher
  Parse IE, FireFox, Chrome and Safari Cookies for Google Analytic values
  ☆23Updated 8 years ago
• averagesecurityguy / exfil
  Modular tool to test exfiltration techniques.
  ☆36Updated 7 years ago
• glassdfir / SysmonMapper
  Maps process creation logged by Sysmon uses Google Org Chart API
  ☆24Updated 8 years ago
• mantarayforensics / mantaray
  MantaRay Automated Computer Forensic Triage Tool
  ☆63Updated 5 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆40Updated 4 years ago
• dnlongen / IR-Toolkit
  ☆21Updated 3 years ago
• mdegrazia / OnionPeeler
  Python script to batch query the Tor Relays and Bridges
  ☆36Updated 5 years ago
• defensivedepth / Sysmon_OSSEC
  OSSEC Decoder & Rulesets for Sysmon Events
  ☆15Updated 9 years ago
• n3l5 / irFARTpull
  PowerShell script utilized to pull several forensic artifacts from a live Win7 and WinXP system without WINRM.
  ☆50Updated 6 years ago
• 1aN0rmus / TekDefense
  Open Development projects for TekDefense
  ☆77Updated 8 years ago
• randomaccess3 / 4n6_stuff
  Git for me to put all my forensics stuff
  ☆21Updated 2 months ago
• 504ensicsLabs / find_times
  Discover potential timestamps within the Windows Registry
  ☆18Updated 10 years ago
• et0x / Incident-Response
  ☆36Updated 8 years ago
• n3l5 / irCRpull
  irCRpull is a PowerShell script utilized to pull several system artifacts, utilizing the free tool CrowdResponse, from a live Win7+ syste…
  ☆13Updated 9 years ago
• ajackal / ir_scripts
  incident response scripts
  ☆18Updated 5 years ago
• imander / DarkObserver
  Windows PowerShell domain scanning tool
  ☆54Updated 8 years ago
• Invoke-IR / PowerForensicsPortable
  ☆31Updated 4 years ago
• TKCERT / sysmon-config
  Sysmon configuration file template with default high-quality event tracing
  ☆17Updated 3 years ago
• vector-sec / DuoPusher
  Duo MFA auditing tool to test users' likelihood of approving unexpected push notifications
  ☆13Updated 6 years ago