mattifestation / MSFTTraceMessageFormat

Related projects ⓘ

Alternatives and complementary repositories for MSFTTraceMessageFormat

• mattifestation / CatalogTools
  A PowerShell module to assist in parsing and managing catalog files.
  ☆20Updated 7 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆44Updated 7 years ago
• mattifestation / UnicornPowerShell
  A PowerShell binding for the Unicorn Engine
  ☆16Updated 8 years ago
• newlog / r2com
  radare2 script to help on COM objects reverse engineering
  ☆11Updated 7 years ago
• Cisco-Talos / useful-tools
  ☆16Updated 2 years ago
• mattifestation / WindowsEventLogMetadata
  Event metadata collected across all manifest-based ETW providers on Window 10 1903
  ☆30Updated 4 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆14Updated 4 years ago
• psrok1 / emu-strings
  Emu-strings project - JScript/VBScript automated dropper analysis system
  ☆17Updated 3 years ago
• byt3bl33d3r / Invoke-AutoIt
  Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes
  ☆60Updated 7 years ago
• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆28Updated 4 years ago
• woanware / reg-entropy-scanner
  Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…
  ☆11Updated 5 years ago
• vletoux / ADSecrets
  Set of ultra technical notes about AD
  ☆18Updated 6 years ago
• FuzzySecurity / DotNetToJScript-LanguageModeBreakout
  ☆26Updated 6 years ago
• stolenbytes / apcforthewin
  ☆16Updated 7 years ago
• ycscaly / Privilege-Escalation-Framework
  Privilege Escilation training project, with an emphasis on the distinction between vulnerability research & it's exposure and exploitatio…
  ☆35Updated 7 years ago
• airbus-cert / cacdec
  The hidden mstsc recorder player
  ☆28Updated 4 years ago
• SecurityRiskAdvisors / PDBlaster
  ☆48Updated 4 years ago
• OSWatcher / windows-desktop
  History and analysis of Windows desktop images
  ☆14Updated 3 years ago
• malcomvetter / CertCheck
  Programmatically access a TLS certificate chain in C++ and C#
  ☆13Updated 6 years ago
• matthewdunwoody / PS_logging_reg
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Updated 8 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆57Updated 5 years ago
• api0cradle / BGInfo
  ☆16Updated 6 years ago
• mattifestation / ShellcodeExec
  A simple shellcode runner
  ☆20Updated 10 years ago
• Dankirk / RegSLScan
  A tool for scanning registery key permissions. Find where non-admins can create symbolic links.
  ☆46Updated 5 years ago
• Cn33liz / p0shKiller
  ☆62Updated 8 years ago
• dsnezhkov / RunDllMShim
  Run Managed Assemblies with RunDll
  ☆16Updated 6 years ago