nsacyber / PRUNELinks
Logs key Windows process performance metrics. #nsacyber
☆67Updated 3 years ago
Alternatives and similar repositories for PRUNE
Users that are interested in PRUNE are comparing it to the libraries listed below
Sorting:
- Configuration guidance for implementing BitLocker. #nsacyber☆126Updated 6 years ago
- Aids in discovering HTTP and HTTPS connectivity issues. #nsacyber☆112Updated 4 years ago
- Search a filesystem for indicators of compromise (IoC).☆81Updated last week
- Configuration guidance for implementing application whitelisting with AppLocker. #nsacyber☆226Updated last month
- Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.☆32Updated 7 years ago
- Identifies unexpected and prohibited certificate authority certificates on Windows systems. #nsacyber☆113Updated 9 years ago
- Automatically scores how well Windows systems have implemented some of the top 10 Information Assurance mitigation strategies. #nsacyber☆76Updated 9 years ago
- Scapy packet fragment reassembly engines☆33Updated 4 years ago
- ☆29Updated 9 years ago
- Collection of resources related to the Center for Threat-Informed Defense☆76Updated last year
- Tools to assist in forensicating docker☆85Updated 9 months ago
- Guidance for blocking outdated web technologies. #nsacyber☆63Updated 4 years ago
- A series of GPO templates☆21Updated 8 years ago
- Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs☆97Updated 4 years ago
- PowerShell Module for automating Tenable Nessus Vulnerability Scanner.☆88Updated 3 years ago
- Snapshot, patch, health-check, and potentially roll-back Windows VMs☆35Updated 7 years ago
- Converts serial IP data, typically collected from Industrial Control System devices, to the more commonly used Packet Capture (PCAP) form…☆82Updated 8 years ago
- ☆45Updated 2 years ago
- PowerShell Module to interact with the Shodan service☆145Updated 9 years ago
- Stand-Alone Windows Hardening (SAWH) is a script to reduce the attack surface of Windows systems that are not attached to a Windows Activ…☆55Updated 4 years ago
- PowerShell Module to interact with VirusTotal☆122Updated 5 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆55Updated 3 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆39Updated 3 years ago
- Audix is a PowerShell tool to quickly configure the Windows Event Audit Policies for security monitoring☆116Updated last month
- A prototype that demonstrates a method for scoring how well Windows systems have implemented some of the top 10 Information Assurance mit…☆99Updated 9 years ago
- Configuration guidance for implementing Pass-the-Hash mitigations. #nsacyber☆200Updated 9 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆80Updated last month
- ☆55Updated 4 years ago
- PhishReporter Outlook Add-In in an Outlook Add-In that allows users to report phishing e-mails to a specific e-mail address for further p…☆35Updated 8 years ago
- incident response scripts☆19Updated 6 years ago