mattifestation / BCD

Related projects ⓘ

Alternatives and complementary repositories for BCD

• zacbrown / PowerKrabsEtw
  PowerKrabsEtw is a PowerShell interface for doing real-time ETW tracing.
  ☆103Updated 4 years ago
• Invoke-IR / WmiEvent
  A PowerShell module to abstract the complexities of Permanent WMI Event Subscriptions
  ☆54Updated 8 years ago
• mattifestation / DeviceGuardBypassMitigationRules
  A reference Device Guard code integrity policy consisting of FilePublisher deny rules for published Device Guard configuration bypasses
  ☆113Updated 7 years ago
• secabstraction / PowerStash
  ☆22Updated 8 years ago
• darkoperator / ADAudit
  Windows PowerShell module to help in the auditing of Active Directory environments.
  ☆49Updated 7 years ago
• mattifestation / WindowsEventLogMetadata
  Event metadata collected across all manifest-based ETW providers on Window 10 1903
  ☆30Updated 4 years ago
• duffney / WEF_ADSecuirtyLogs
  Windows Event Forwarding for Active Directory Security Logs
  ☆29Updated 8 years ago
• matthastings / PSalander
  ☆51Updated 6 years ago
• claudiospizzi / SecurityFever
  PowerShell Module with custom functions and cmdlets related to Windows and application security.
  ☆75Updated 2 months ago
• proxb / PoshPrivilege
  Manage user privileges on a local machine or view applied privileges on local or remote system
  ☆104Updated 7 years ago
• mattifestation / WinPETools
  A module designed to simplify the creation, customization, and deployment of bootable Windows Preinstallation Environment (WinPE) images.
  ☆146Updated 8 years ago
• jaredcatkinson / PSReflect-Functions
  Module to provide PowerShell functions that abstract Win32 API functions
  ☆239Updated 5 months ago
• mattifestation / CatalogTools
  A PowerShell module to assist in parsing and managing catalog files.
  ☆20Updated 7 years ago
• mkellerman / PSRunAs
  Collection of scripts to Invoke an expression with different credentials.
  ☆33Updated 3 years ago
• zacbrown / PowerShellMethodAuditor
  PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.
  ☆37Updated 7 years ago
• mattifestation / PSReflect
  Easily define in-memory enums, structs, and Win32 functions in PowerShell
  ☆217Updated 6 years ago
• mattifestation / WDACPolicies
  A collection of Windows software baseline notes with corresponding Windows Defender Application Control (WDAC) policies
  ☆60Updated 11 months ago
• mattifestation / MSFTTraceMessageFormat
  All TMF files that I extracted from Microsoft PDBs.
  ☆12Updated 5 years ago
• Cr0n1c / SCCM-Enumeration
  ☆37Updated 8 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆44Updated 7 years ago
• JaekelEDV / PSLabHelpers
  A collection of some Powershell scripts and functions for building lab-environments
  ☆19Updated last year
• vletoux / SmbScanner
  Smb Scanner from PingCastle
  ☆120Updated 5 years ago
• MotiBa / Sysmon
  Sysmon configuration
  ☆66Updated 6 years ago
• zacbrown / hiddentreasure-etw-demo
  Basic demo for Hidden Treasure talk.
  ☆49Updated 7 years ago
• ANSSI-FR / SysvolExplorer
  Active Directory Group Policy analyzer
  ☆96Updated 10 years ago
• adamdriscoll / AMSI
  PowerShell Module for the Antimalware Scan Interface (AMSI)
  ☆25Updated 8 years ago
• NotAwful / powershell-baseline
  Baseline Health Scripts
  ☆10Updated 7 years ago
• michdu / WhatAmIMissing
  Get all AD objects which are hidden from you
  ☆18Updated 7 years ago