msuiche / dinfo

Related projects ⓘ

Alternatives and complementary repositories for dinfo

• JohnLaTwC / MacroJob
  Proof of concept VBA code to add to Normal.dot to put restrictions on Word
  ☆41Updated 7 years ago
• l0ss / Get-GPTrashfire
  B-Sides CBR 2018 talk about group policy and Grouper
  ☆39Updated 5 years ago
• aurel26 / gpocheck
  gpocheck
  ☆30Updated 3 months ago
• JaekelEDV / PSLabHelpers
  A collection of some Powershell scripts and functions for building lab-environments
  ☆19Updated last year
• davebremer / Export-SysmonLogs
  ☆11Updated 6 years ago
• SentineLabs / PowerTrick
  This is a repository for the public blog with Labs indicators of compromise and code
  ☆18Updated 4 years ago
• MotiBa / ProcessMonitorAnalyzeMalware
  Script to parse Process Monitor XML log file, and give you a summary report.
  ☆23Updated 8 years ago
• matthewdunwoody / PS_logging_reg
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Updated 8 years ago
• surbo / OVERFLOW
  Microsoft Flow Attack Framework
  ☆23Updated 5 years ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆21Updated 5 years ago
• Ben0xA / PowerShellScripts
  Random PowerShell Scripts
  ☆16Updated 3 years ago
• lordsaibat / finding_windows_privileges
  Windows privileges add to the complexity of Windows user permissions. Each additional user added to a group could lead to a domain compro…
  ☆10Updated 6 years ago
• spyx / SysmonGrahp
  ☆14Updated 3 years ago
• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆44Updated 7 years ago
• NotAwful / powershell-baseline
  Baseline Health Scripts
  ☆10Updated 7 years ago
• cyb3rfox / MFTEntryCarver
  Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…
  ☆21Updated 5 years ago
• airbus-cert / PSTrace
  Trace ScriptBlock execution for powershell v2
  ☆39Updated 4 years ago
• WiredPulse / AutomatedProfiler
  Automated forensics written in PowerShell
  ☆34Updated 5 years ago
• byt3bl33d3r / Invoke-AutoIt
  Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes
  ☆60Updated 7 years ago
• bsi-group / autorun-logger-server
  Server for receiving autorun data from the clients
  ☆13Updated 7 years ago
• rvrsh3ll / CrypoCurrencyPowerShell
  ☆30Updated 6 years ago
• SentineLabs / TrickBot-Anchor
  This is a repository for the public blog with Labs indicators of compromise.
  ☆10Updated 4 years ago
• ubeeri / Invoke-PWAudit
  A PowerShell tool which provides an easy way to check for shared passwords between Windows Active Directory accounts
  ☆33Updated 5 years ago
• HarmJ0y / Invoke-ADDefense
  Defensive-oriented Active Directory enumeration
  ☆23Updated 8 years ago
• mattifestation / WindowsEventLogMetadata
  Event metadata collected across all manifest-based ETW providers on Window 10 1903
  ☆30Updated 4 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• ceramicskate0 / SWELF
  Simple Windows Event Log Forwarder (SWELF). Its easy to use/simply works Log Forwarder and EVTX Parser. Almost in full release here at ht…
  ☆24Updated last year