limbenjamin / nTimetoolsLinks
Timestomper and Timestamp checker with nanosecond accuracy for NTFS volumes
☆50Updated 3 years ago
Alternatives and similar repositories for nTimetools
Users that are interested in nTimetools are comparing it to the libraries listed below
Sorting:
- Tool to manage user privileges☆28Updated 5 years ago
- ☆34Updated 2 years ago
- Triaging Windows event logs based on SANS Poster☆39Updated 2 years ago
- Specialized tool to dump Position Independent Code.☆22Updated 4 years ago
- ☆91Updated 2 years ago
- A project created with an aim to emulate and test exfiltration of data over different network protocols.☆31Updated 2 years ago
- Live memory analysis detecting malware IOCs in processes, modules, handles, tokens, threads, .NET assemblies, memory address space and en…☆41Updated 8 months ago
- ProcDot Malware Sandbox☆24Updated 6 months ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Repository of Volatility3 plugins☆22Updated 2 years ago
- Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.☆58Updated 2 years ago
- Use smb2 protocol to detect remote computer os version, support win7/server2008-win10/server2019☆59Updated 3 years ago
- PoC that manipulates Windows file times using SetFileTime() API☆61Updated 6 years ago
- Epimitheus is a tool that uses graphical database Neo4j for Windows Events visualization.☆19Updated 3 years ago
- AdHoc solutions☆48Updated last year
- A scanner that files with compromised or untrusted code signing certificates written in python.☆64Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- ☆22Updated last year
- Dumping credentials through windbg and pykd☆40Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- Exfiltrate data from a compromised target using covert channels☆16Updated 4 years ago
- Python wrappers for mal_unpack☆36Updated last year
- ☆45Updated last year
- ☆19Updated 2 years ago
- pypykatz plugin for volatility3 framework☆40Updated last year
- Manipulate timestamps on NTFS☆51Updated 10 years ago
- This is a repository that is meant to hold detections for various process injection techniques.☆34Updated 5 years ago
- ☆11Updated 3 years ago
- all credits go to @mgeeky☆64Updated 3 years ago
- A collection of Tools and Rules for decoding Brute Ratel C4 badgers☆62Updated 2 years ago