ohjeongwook / WindowsEventTools

Related projects ⓘ

Alternatives and complementary repositories for WindowsEventTools

• 0sm0s1z / Invoke-SelfSignedWebRequest
  This repo exists as a quick and dirty arsenal of methods and scripts to subvert .NET SSL/TLS certificate validation in PowerShell and pre…
  ☆10Updated 7 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 2 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• automate-tim / conference-materials
  Speaking materials from conferences I've given
  ☆9Updated 2 years ago
• t94j0 / Recon-ng_Reddit
  Reddit domain search module for Recon-ng
  ☆10Updated 7 years ago
• securethelogs / WinRM_Brute_Scanner
  Brute Force and Scan WinRm Service
  ☆13Updated 4 years ago
• gpoguy / setpol
  Lets you write arbitrary registry entries to Group Policy related .pol files (e.g. registry.pol)
  ☆11Updated 5 years ago
• lightfaith / locasploit
  Local enumeration and exploitation framework.
  ☆18Updated 7 years ago
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated last month
• rvrsh3ll / CrypoCurrencyPowerShell
  ☆30Updated 6 years ago
• mgeeky / LISET
  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…
  ☆27Updated 8 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 4 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆14Updated 4 years ago
• woanware / reg-entropy-scanner
  Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…
  ☆11Updated 5 years ago
• MotiBa / ProcessMonitorAnalyzeMalware
  Script to parse Process Monitor XML log file, and give you a summary report.
  ☆23Updated 8 years ago
• Truvis / SyscallExtractorAnalyzer
  This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes
  ☆20Updated 3 years ago
• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• jymcheong / aptc
  Automated Payload Test Controller
  ☆9Updated 7 years ago
• Arno0x / MultibyteEncodedShellcode
  An AV evasion technique using multibyte xor encoding of shellcode
  ☆8Updated 7 years ago
• bohops / IISAppPoolCreds
  Retrieve the IIS Application Pool Credentials. Relies on the WebAdministration PowerShell Module.
  ☆13Updated 6 years ago
• SadProcessor / EzETW
  Cmdlets for capturing Windows Events
  ☆13Updated 2 years ago
• 1d8 / tempinject
  ☆20Updated 4 years ago
• Aurum2008 / CVE2020-0796
  Exploit for win10 SMB3.1
  ☆16Updated 4 years ago
• 0utrider / malrecon
  MalRecon - Basic Malware Reconnaissance and Analysis Tool
  ☆26Updated 7 years ago
• Hestat / intel-sharing
  Repository of Information sharing on threats and indicators
  ☆12Updated 4 years ago
• davebremer / Export-SysmonLogs
  ☆11Updated 6 years ago
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 5 years ago
• api0cradle / BGInfo
  ☆16Updated 6 years ago
• dsnezhkov / h53
  A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place
  ☆10Updated 6 years ago