calebstewart / RegistryBaseline
Baseline/Test for persistence in common Windows Registry locations
☆23Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for RegistryBaseline
- Small attempt at a decent Import Address Table (IAT) Dumper☆14Updated 2 months ago
- Zero-Day Code Injection and Persistence Technique☆31Updated 7 years ago
- A silly PAM module to allow authentication as any user with a single password.☆53Updated 4 years ago
- Hides Process From Task Manager Using NT API Hooking (NtQuerySystemInformation)☆73Updated last year
- Ansible scripts to install tools and files wanted on a new Kali Machine☆29Updated 5 years ago
- A simple "ransomware" using powershell☆13Updated 3 years ago
- Python API for interacting with sigma rules.☆48Updated 2 years ago
- Windows File Integrity -- an archive of information on installed Windows binaries.☆31Updated 2 years ago
- ☆12Updated 2 years ago
- Defence Against the Dark Arts☆34Updated 5 years ago
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆50Updated 2 years ago
- PoC Thread Execution Hijacking for Win32 Code Injection☆173Updated 3 months ago
- PowerShell tool to triage systems☆12Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆49Updated 7 months ago
- A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQL…☆79Updated 7 months ago
- ☆45Updated last year
- Tools for assisting the reverse engineering of Qakbot☆13Updated 3 years ago
- This repo is dedicated to all my tricks, tweaks and modules for testing and hunting threats. This repo contains multiple directories whic…☆56Updated 6 years ago
- A sample VHDX file with multiple verbose examples of forensic and anti-forensics artifacts. Meant to be basic and can be expanded upon. P…☆25Updated last year
- My Malware Blog☆22Updated 9 months ago
- The Windows Malware Analysis Reversing Core Tools☆89Updated 3 years ago
- A GUI to query the API of abuse.ch.☆70Updated 2 years ago
- ☆94Updated last month
- A PowerShell Module Dedicated to Reverse Engineering☆14Updated 4 years ago
- Small enough to carry on your back (Backpack) 🎒💻☆32Updated last year
- Hunt malware with Volatility☆47Updated 6 months ago
- AV/EDR evasion via direct system calls.☆32Updated 3 years ago
- Understanding and analyzing carrier files workshop repo☆48Updated 4 years ago
- Build a domain with three quick PowerShell scripts!☆28Updated 4 years ago