hardwaterhacker / scandiffLinks
Scandiff is a PowerShell script to automate host discovery and scanning with nmap. After discovering and scanning hosts, scandiff performs an nmap ndiff on the output against previous results, 7zips all generated output, and optionally emails all output to a specified email address.
☆17Updated 10 years ago
Alternatives and similar repositories for scandiff
Users that are interested in scandiff are comparing it to the libraries listed below
Sorting:
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Updated 7 years ago
- Sysmon configuration☆65Updated 7 years ago
- Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …☆79Updated 7 years ago
- Queries to parse sysmon event log file with microsoft logparser☆56Updated 10 years ago
- Maps process creation logged by Sysmon uses Google Org Chart API☆23Updated 9 years ago
- This script runs several security checks and makes modifications (with your permission) to your Active Directory domain to improve it's s…☆45Updated 9 years ago
- Windows PowerShell domain scanning tool☆54Updated 9 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 8 years ago
- PowerShell No Agent Hunting☆109Updated 7 years ago
- Splunk app for Threat hunting☆15Updated 6 years ago
- This module is used to report phishing URLs to their WHOIS/RDAP abuse contact information.☆42Updated 8 years ago
- A powershell script for creating a Windows honeyport.☆89Updated 6 months ago
- Sysmon configuration file template with default high-quality event tracing☆17Updated 4 years ago
- A PowerShell module to abstract the complexities of Permanent WMI Event Subscriptions☆55Updated 9 years ago
- ☆36Updated 8 years ago
- ☆40Updated 9 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 10 years ago
- PowerShell script to find 'vulnerable' security-related GPOs that should be hardended☆200Updated 7 years ago
- IR-Tools - PowerShell tools for IR☆130Updated 8 years ago
- PowerShell script utilized to pull several forensic artifacts from a live Win7 and WinXP system without WINRM.☆50Updated 7 years ago
- ☆29Updated 9 years ago
- ☆33Updated 10 months ago
- ☆53Updated 7 years ago
- PowerShell Scripting Expert repository, contains template code for security and administrative scripting, largely derived through taking …☆84Updated 6 years ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆55Updated 7 years ago
- incident response scripts☆19Updated 6 years ago
- Materials of Workshop presented at DEFCON 25☆107Updated 8 years ago
- Credit to Helge Klein - https://helgeklein.com/blog/2015/02/creating-realistic-test-user-accounts-active-directory/☆69Updated 7 years ago
- Powershell collection designed to assist in Threat Hunting Windows systems.☆27Updated 7 years ago
- Fast incident overview☆40Updated 8 years ago