nmantani / PS-TrustedDocuments
PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office
☆34Updated 2 years ago
Alternatives and similar repositories for PS-TrustedDocuments:
Users that are interested in PS-TrustedDocuments are comparing it to the libraries listed below
- ☆33Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆91Updated 2 years ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆76Updated last year
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆30Updated 2 years ago
- ☆38Updated 3 years ago
- A repository containing the research output from my GCFE Gold Paper which compared Windows 10 and Windows 11.☆26Updated 2 years ago
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 3 years ago
- General Content☆23Updated 8 months ago
- ☆22Updated last week
- ☆34Updated 2 years ago
- Yara Rules for Modern Malware☆73Updated last year
- ESXi Cyber Security Incident Response Script☆23Updated 6 months ago
- ShellSweeping the evil.☆52Updated 8 months ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- Generate YARA rules for OOXML documents.☆38Updated last year
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- Evtx Log (xml) Browser☆56Updated 2 years ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated last year
- Placeholder for my detection repo and misc detection engineering content☆43Updated last year
- Scripts and tools accompanying HP Threat Research blog posts and reports.☆50Updated 11 months ago
- Splunk Technology-AddOn for Aurora Sigma-Based EDR Agent. It helps parse and configure the necessary inputs to neatly consume Aurora EDR …☆13Updated 2 years ago
- 100 Days of YARA to be updated with rules & ideas as the year progresses☆58Updated 2 years ago
- A set of tools for collecting forensic information☆26Updated 4 years ago
- Modular malware analysis artifact collection and correlation framework☆53Updated 10 months ago
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆29Updated 9 months ago
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated 2 years ago
- Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.☆51Updated last year
- ☆14Updated 2 years ago