nccgroup / UninstalledAppCanary
A Canary which fires when uninstalled
☆34Updated 4 years ago
Alternatives and similar repositories for UninstalledAppCanary:
Users that are interested in UninstalledAppCanary are comparing it to the libraries listed below
- ☆11Updated 4 years ago
- Protect your servers with a secret header☆29Updated 4 years ago
- A PowerShell script to prevent Sysmon from writing its events☆15Updated 5 years ago
- ☆15Updated 5 years ago
- Forked and updated with some additional features over the original☆17Updated 4 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated last year
- reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support☆22Updated 3 years ago
- parsers to make life easier☆13Updated 4 years ago
- This is a 64 bit VBA implementation of Christophe Tafani-Dereeper's original VBA code described in his blog @ https://blog.christophetd.f…☆21Updated 5 years ago
- A tool to sync mythic events with ghostwriter oplog.☆13Updated 5 months ago
- Apfell implant written in C#.☆8Updated 4 years ago
- Do the unexpected with AD GPO processing☆9Updated 6 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆33Updated 5 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- Apply a filter to the events being reported by windows event logging☆15Updated 4 years ago
- A cross platform tool for verifying credentials and executing single commands☆32Updated 6 years ago
- Reproducible and extensible BloodHound playbooks☆43Updated 5 years ago
- Kibana app for RedELK☆17Updated 2 years ago
- ☆14Updated 3 years ago
- Log converter from CS log to Ghostwriter CSV☆30Updated 4 years ago
- ☆17Updated 5 years ago
- Tricard - Malware Sandbox Fingerprinting☆20Updated last year
- Continuous kerberoast monitor☆45Updated last year
- SSDP Service Discovery☆17Updated 6 years ago
- ☆18Updated last year
- Periodically check hashcat cracking progress and notify of success.☆11Updated 6 years ago
- Helpful operator notes and techniques in actionable form☆16Updated last year
- Cobalt Strike log state tracking, parsing, and storage☆24Updated 5 years ago
- Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…☆19Updated 4 years ago
- Golang Shlyuz Implant Implementation☆12Updated 2 years ago