Replay RDP traffic from PCAP
☆202Jun 25, 2019Updated 6 years ago
Alternatives and similar repositories for RDP-Replay
Users that are interested in RDP-Replay are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Carve NTFS USN records from binary data☆27May 21, 2017Updated 8 years ago
- Registry Miner☆14Apr 10, 2018Updated 7 years ago
- Comae Hibernation File Decompressor☆156Apr 1, 2023Updated 2 years ago
- A Windows Event Processing Utility☆47Feb 21, 2018Updated 8 years ago
- POC for IAT Parsing Payloads☆48Jan 1, 2017Updated 9 years ago
- Konrads' Pen-Ultimate (Windows) Log File Parser☆14Dec 27, 2025Updated 2 months ago
- Exploit the credentials present in files and memory☆844May 25, 2023Updated 2 years ago
- Query and report user logons relations from MS Windows Security Events☆243Aug 9, 2018Updated 7 years ago
- Decode security descriptors in $Secure on NTFS☆22Feb 24, 2022Updated 4 years ago
- Scans for accessibility tools backdoors via RDP☆342Mar 16, 2018Updated 8 years ago
- ☆121Oct 6, 2015Updated 10 years ago
- Server for receiving autorun data from the clients☆13Sep 26, 2017Updated 8 years ago
- Some .ps1 scripts for pentesting☆140Jan 6, 2026Updated 2 months ago
- Web App for Volatility framework☆386Jan 13, 2026Updated 2 months ago
- Crappy Win32k syscall fuzzer☆13May 2, 2015Updated 10 years ago
- ☆68Jun 21, 2017Updated 8 years ago
- Development guide for Volatility Plugins☆22Sep 6, 2017Updated 8 years ago
- Vulnerable Windows Driver with exploits which were used for demonstration purposes on Hunting and exploiting bugs in kernel drivers prese…☆13Jan 29, 2013Updated 13 years ago
- A Burp Suite extension that checks if a particular URL responds differently to various User-Agent headers☆15Sep 4, 2014Updated 11 years ago
- WSUSpect Proxy - a tool for MITM'ing insecure WSUS connections☆242Feb 8, 2017Updated 9 years ago
- An automated SMB relay exploitation script.☆153Oct 11, 2016Updated 9 years ago
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆387Jun 25, 2024Updated last year
- A framework that correlates Bro events☆18Oct 25, 2013Updated 12 years ago
- Inline file transfer using in-built Windows tools (DEBUG.exe or PowerShell).☆317Apr 27, 2020Updated 5 years ago
- Automation for VirusTotal☆31May 6, 2016Updated 9 years ago
- PowerShell script utilized to pull several forensic artifacts from a live Win7 and WinXP system without WINRM.☆52Jan 25, 2018Updated 8 years ago
- ☆14Jan 24, 2016Updated 10 years ago
- CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across al…☆657Aug 19, 2019Updated 6 years ago
- Various scrips☆12Oct 19, 2022Updated 3 years ago
- PowerShell script for hunting webshells on Microsoft Exchange Servers.☆56Feb 1, 2017Updated 9 years ago
- Reconstruct process trees from event logs☆147Aug 12, 2020Updated 5 years ago
- A YARA-integrated process denial framework for Windows☆397Feb 15, 2020Updated 6 years ago
- Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files☆122May 29, 2024Updated last year
- A collection of bro_scripts and signatures☆27Jun 26, 2019Updated 6 years ago
- A script to test an RDP host for sticky keys and utilman backdoor.☆263Sep 12, 2016Updated 9 years ago
- Python API bindings for FireEye Products☆13Feb 17, 2021Updated 5 years ago
- Some tutorials and examples for generic unpacking JAVA, .NET and x86/x64 code☆51May 3, 2016Updated 9 years ago
- Python script to parse the NTFS USN Journal☆117Jul 15, 2022Updated 3 years ago
- Laika BOSS: Object Scanning System☆751Dec 16, 2024Updated last year