brad-anton / extension_finder

Related projects: ⓘ

• JamesHabben / sysmon-queries
  Queries to parse sysmon event log file with microsoft logparser
  ☆56Updated 9 years ago
• Invoke-IR / PowerForensicsPortable
  ☆29Updated 4 years ago
• NotAwful / Sysmon-DSC
  ☆17Updated this week
• jaegeral / awesome-incident-response-pro-bono
  This repository is a curated list of pro bono incident response entities.
  ☆19Updated last year
• crypsisgroup / Splunkmon
  ☆18Updated this week
• Invoke-IR / Presentations
  ☆30Updated 8 years ago
• glassdfir / SysmonMapper
  Maps process creation logged by Sysmon uses Google Org Chart API
  ☆24Updated 8 years ago
• davehull / VirusTotalShell
  A fork of David B Heise's VirusTotal Powershell Module
  ☆17Updated 2 years ago
• imander / DarkObserver
  Windows PowerShell domain scanning tool
  ☆54Updated 8 years ago
• neu5ron / WinLogsZero2Hero
  This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.
  ☆21Updated 6 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆40Updated 4 years ago
• philhagen / vmware-snapcompare
  VMware Snapshot Forensic Comparison Scripts
  ☆25Updated 11 years ago
• EnclaveConsulting / Windows-Services
  ☆39Updated this week
• bandrel / OCyara
  Performs OCR on image files and scans them for matches to YARA rules
  ☆39Updated 5 years ago
• roo7break / PowerShell-Scripts
  List of PowerShell scripts conjured up for my consumption (you are welcome to use)
  ☆36Updated 10 years ago
• hardwaterhacker / scandiff
  Scandiff is a PowerShell script to automate host discovery and scanning with nmap. After discovering and scanning hosts, scandiff perfor…
  ☆17Updated 9 years ago
• api0cradle / PowershellScripts
  A collection of useful Powershell Scripts that I have created
  ☆45Updated 7 years ago
• davebremer / Export-SysmonLogs
  ☆11Updated 5 years ago
• AlmCo / Panorama
  Fast incident overview
  ☆39Updated 7 years ago
• weslambert / securityonion-strelka
  ☆12Updated 4 years ago
• Invoke-IR / WmiEvent
  A PowerShell module to abstract the complexities of Permanent WMI Event Subscriptions
  ☆54Updated 8 years ago
• cocaman / retefe
  Artefacts from various retefe campaigns
  ☆10Updated 5 years ago
• grayfold3d / POSH-Triage
  Tools for parsing Forensic images
  ☆41Updated 5 years ago
• mdegrazia / Google-Analytic-Cookie-Cruncher
  Parse IE, FireFox, Chrome and Safari Cookies for Google Analytic values
  ☆23Updated 8 years ago
• SneakersInc / sniffmypacketsv2
  Next major release of sniffMyPackets - Now with added packet loving
  ☆12Updated 9 years ago
• jblukach / FileBlock.Info
  ☆11Updated this week
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 7 years ago
• et0x / Incident-Response
  ☆36Updated 7 years ago
• EnclaveConsulting / SANS-Misc
  ☆26Updated this week
• devgc / SrumMonkey
  Tool to parse SRU database
  ☆24Updated 6 years ago