ohjeongwook / WindowsEventTools

Related projects ⓘ

Alternatives and complementary repositories for WindowsEventTools

• Truvis / SyscallExtractorAnalyzer
  This script will pull and analyze syscalls in given application(s) allowing for easier security research purposes
  ☆20Updated 3 years ago
• 0sm0s1z / Invoke-SelfSignedWebRequest
  This repo exists as a quick and dirty arsenal of methods and scripts to subvert .NET SSL/TLS certificate validation in PowerShell and pre…
  ☆10Updated 7 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆14Updated 4 years ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 2 years ago
• mgeeky / LISET
  Light System Examination Toolkit (LISET) - logs & activity & configuration gathering utility that comes handy in fast Windows incident re…
  ☆27Updated 8 years ago
• automate-tim / conference-materials
  Speaking materials from conferences I've given
  ☆9Updated 2 years ago
• rvrsh3ll / CrypoCurrencyPowerShell
  ☆30Updated 6 years ago
• davebremer / Export-SysmonLogs
  ☆11Updated 6 years ago
• securethelogs / WinRM_Brute_Scanner
  Brute Force and Scan WinRm Service
  ☆13Updated 4 years ago
• sourcefrenchy / cryptopayload
  module for certexfil
  ☆15Updated 2 years ago
• StrangerealIntel / DeltaFlare
  ☆12Updated 3 years ago
• gpoguy / setpol
  Lets you write arbitrary registry entries to Group Policy related .pol files (e.g. registry.pol)
  ☆11Updated 5 years ago
• OTRF / bloodhound-notebooks
  Notebooks created to attack and secure Active Directory environments
  ☆27Updated 5 years ago
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated 2 months ago
• woanware / reg-entropy-scanner
  Scans through registry hives outputting entropy values for key/values, dumps binary contents to files...we are looking for those "fileles…
  ☆11Updated 5 years ago
• jymcheong / aptc
  Automated Payload Test Controller
  ☆9Updated 7 years ago
• Arno0x / MultibyteEncodedShellcode
  An AV evasion technique using multibyte xor encoding of shellcode
  ☆8Updated 7 years ago
• Wh1t3Rh1n0 / propecia.py
  A multi-threaded class C network scanner. Loosely based on propecia.c by Bind.
  ☆12Updated 10 years ago
• e-sterling / Nmap-Scan.PS1
  PowerShell wrapper for nmap, allows easy scanning of many hosts and subnets
  ☆17Updated 6 years ago
• Powershell-Offense / Post-Exploitation
  \ PowerAvails Powershell /
  ☆12Updated 6 years ago
• proferosec / Threat-Intelligence
  A collection of threat intelligence data such as IOC, Yara and Snort/Suricata Rules etc.
  ☆10Updated 5 years ago
• Manticore-Platform / public-threats
  Manticore's Public Threats Repository
  ☆10Updated 4 years ago
• rvrsh3ll / SharpSSDP
  SSDP Service Discovery
  ☆16Updated 5 years ago
• dsnezhkov / h53
  A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place
  ☆10Updated 6 years ago
• RedSiege / CLM-Base64
  This project provides Base64 encoding and decoding functionality to PowerShell within Constrained Language Mode
  ☆22Updated 4 months ago
• GoSecure / zap-autodecode-view
  ZAP plugin demonstrating custom view for WebSocket messages.
  ☆13Updated 2 years ago
• d3vzer0 / cnc-relay
  Docker projects to retain beacon source IPs using C2 relaying infra
  ☆11Updated 5 years ago