ewhitehats / kovterTools
☆35Updated 6 years ago
Alternatives and similar repositories for kovterTools:
Users that are interested in kovterTools are comparing it to the libraries listed below
- Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…☆11Updated 6 years ago
- A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.☆10Updated 5 years ago
- Forked and updated with some additional features over the original☆16Updated 3 years ago
- A PowerShell script to prevent Sysmon from writing its events☆14Updated 4 years ago
- ☆11Updated 6 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆44Updated 7 years ago
- Microsoft Flow Attack Framework☆23Updated 5 years ago
- Files related to my presentation at SigSegV2 conference in 2019. You can find related papers on my blog☆13Updated 5 years ago
- module for certexfil☆15Updated 2 years ago
- ☆12Updated 3 years ago
- Run Any Native PE file as a memory ONLY Payload , most likely as a shellcode using hta attack vector which interacts with Powershell.☆27Updated 7 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆41Updated 6 years ago
- Script to parse Process Monitor XML log file, and give you a summary report.☆23Updated 8 years ago
- ☆23Updated 4 years ago
- ☆24Updated 5 years ago
- A Canary which fires when uninstalled☆34Updated 3 years ago
- ☆22Updated 3 years ago
- A set of tools for collecting forensic information☆26Updated 4 years ago
- ☆13Updated 4 years ago
- DeepToad is a library and a tool to clusterize similar files using fuzzy hashing☆20Updated 4 years ago
- The Multiplatform Linux Sandbox☆15Updated last year
- Proof of concept memory anti-forensic toolkit designed for hiding various artifacts inside the memory dump during memory acquisition on M…☆10Updated 5 years ago
- ☆47Updated 5 years ago