calebstewart / RegistryBaseline
Baseline/Test for persistence in common Windows Registry locations
☆24Updated 6 years ago
Alternatives and similar repositories for RegistryBaseline:
Users that are interested in RegistryBaseline are comparing it to the libraries listed below
- Small attempt at a decent Import Address Table (IAT) Dumper☆14Updated 7 months ago
- Zero-Day Code Injection and Persistence Technique☆33Updated 8 years ago
- Hides Process From Task Manager Using NT API Hooking (NtQuerySystemInformation)☆75Updated 2 years ago
- Ansible scripts to install tools and files wanted on a new Kali Machine☆30Updated 5 years ago
- Python API for interacting with sigma rules.☆50Updated 2 years ago
- A silly PAM module to allow authentication as any user with a single password.☆55Updated 4 years ago
- PowerShell tool to triage systems☆12Updated last year
- ☆12Updated 2 years ago
- A simple "ransomware" using powershell☆14Updated 3 years ago
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆54Updated 3 years ago
- Recycle bin artifact parser☆44Updated 2 months ago
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆61Updated 3 months ago
- Windows File Integrity -- an archive of information on installed Windows binaries.☆31Updated 2 years ago
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆26Updated 2 years ago
- Red Team Tools used for Pros Versus Joes CTF Games. Here for Blue Teams to understand the pwnage.☆27Updated 7 months ago
- Defence Against the Dark Arts☆34Updated 5 years ago
- Landing page for calebstew.art☆23Updated 3 years ago
- ☆45Updated 2 years ago
- ☆39Updated 2 months ago
- Collection of PowerShell functinos and scripts a Blue Teamer might use☆83Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated 11 months ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆77Updated 3 years ago
- The Windows Malware Analysis Reversing Core Tools☆92Updated 4 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- Repository of open source malware here on Github!☆41Updated 3 years ago
- This contains the public CCDC materials for Cyber@UCR.☆35Updated last year
- ☆50Updated 2 months ago
- SysInternals' Process Monitor filters repository - collected from various places and made up by myself. To be used for quick Behavioral a…☆65Updated 3 years ago
- Collection of scripts used to deobfuscate GOOTLOADER malware samples.☆60Updated 3 months ago
- Small enough to carry on your back (Backpack) 🎒💻☆32Updated last year