calebstewart / RegistryBaseline

Related projects ⓘ

Alternatives and complementary repositories for RegistryBaseline

• josh0xA / win32-iat
  Small attempt at a decent Import Address Table (IAT) Dumper
  ☆14Updated 2 months ago
• josh0xA / DoubleAgent
  Zero-Day Code Injection and Persistence Technique
  ☆31Updated 7 years ago
• MandConsultingGroup / ring3-kit
  Hides Process From Task Manager Using NT API Hooking (NtQuerySystemInformation)
  ☆72Updated last year
• JohnHammond / wfi
  Windows File Integrity -- an archive of information on installed Windows binaries.
  ☆30Updated 2 years ago
• calebstewart / python-sigma
  Python API for interacting with sigma rules.
  ☆48Updated 2 years ago
• DFIRmadness / infosec-fortress
  A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…
  ☆50Updated 2 years ago
• trustedsec / defensive-scripts
  ☆45Updated last year
• zaneGittins / Huntress
  PowerShell tool to triage systems
  ☆12Updated last year
• wantafanta / purple
  scripts to setup environments for red/blue teams.
  ☆16Updated 11 months ago
• pmarella2 / Powershell-Ransomware
  A simple "ransomware" using powershell
  ☆13Updated 3 years ago
• trustedsec / SysWhispers
  AV/EDR evasion via direct system calls.
  ☆32Updated 3 years ago
• SentineLabs / SentinelLabs_RevCore_Tools
  The Windows Malware Analysis Reversing Core Tools
  ☆89Updated 3 years ago
• byt3bl33d3r / UhOh365
  A script that can see if an email address is valid in Office365 (user/email enumeration). This does not perform any login attempts, is u…
  ☆28Updated 3 years ago
• deFr0ggy / PMAT-Labs-Walkthroughs
  Repo containing my personal walkthroughs of PMAT Labs i.e. PMAT Malware Samples.
  ☆41Updated 2 years ago
• nidem / forgedpillow
  A tool to modify timestamps in a packet capture to a user selected date
  ☆31Updated 3 years ago
• mttaggart / seclab-playbooks
  Ansible playbooks for the Seclab project
  ☆12Updated 2 years ago
• c3rb3ru5d3d53c / c3rb3ru5d3d53c.github.io
  My Malware Blog
  ☆22Updated 9 months ago
• jschicht / SetMace
  Manipulate timestamps on NTFS
  ☆49Updated 10 years ago
• EricZimmerman / RBCmd
  Recycle bin artifact parser
  ☆35Updated 2 months ago
• jckhmr / adlab
  ☆76Updated 4 years ago
• YossiSassi / hAcKtive-Directory-Forensics
  ☆46Updated last year
• ValcanK / HomeLab
  ☆19Updated 3 years ago
• hpthreatresearch / tools
  Scripts and tools accompanying HP Threat Research blog posts and reports.
  ☆48Updated 7 months ago
• nettitude / defensive-scripts
  Defence Against the Dark Arts
  ☆34Updated 5 years ago
• Sokow86 / awesome-malware-resources
  Just another collection of links, tools, reports and other stuff
  ☆18Updated 3 years ago
• Humoud / BackBag-Lab-VM
  Small enough to carry on your back (Backpack) 🎒💻
  ☆32Updated last year
• sansinstitute / slingshot
  SANS Slingshot Linux Distribution
  ☆45Updated 4 years ago
• moullos / Mitigate
  Machine Interrogation To Identify Gaps & Techniques for Execution
  ☆32Updated 2 years ago
• hejelylab / easeYARA
  C# Desktop GUI application that either performs YARA scan locally or prepares the scan in Active Directory domain environment with a few …
  ☆30Updated 2 years ago