randomaccess3 / block-parserLinks
Parser for Windows PowerShell script block logs
☆13Updated 5 months ago
Alternatives and similar repositories for block-parser
Users that are interested in block-parser are comparing it to the libraries listed below
Sorting:
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- ☆15Updated 3 years ago
- Kibana app for RedELK☆17Updated 2 years ago
- USB HID driver emulation with PID/VID (0x3bca/0x27bb) of Plenom A/S Busylight Alpha, that is supported by Mimikatz. When mimikatz is exec…☆20Updated 2 years ago
- A collection of tools adversaries commonly use in an attack.☆14Updated 6 months ago
- ☆15Updated 4 months ago
- Parser for Sdba memory pool tags☆18Updated 3 years ago
- python3 scripts to help with aws triage needs☆15Updated 3 years ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Indicators of Normality☆12Updated 2 years ago
- EventLogSilencer is a PowerShell script designed for disable Windows Event Logging☆17Updated last year
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 10 months ago
- ☆14Updated last year
- Registry hive parsing the async way☆21Updated 2 months ago
- ☆11Updated 4 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆16Updated 11 months ago
- Active Directory Group Policy analyzer☆14Updated 5 years ago
- Track previous changes on specific AD accounts (users, computers) and Groups (online DC), even if event logs were wiped/not collected (e.…☆16Updated 3 months ago
- Hundred Days of Yara Challenge☆12Updated 2 years ago
- ☆33Updated 3 years ago
- Volatility 3 plugins to extract a module as complete as possible☆12Updated last year
- Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more☆11Updated last week
- Alpine hostapd-mana based RADIUS server☆10Updated last year
- ☆18Updated last year
- Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token☆26Updated 2 years ago
- ☆17Updated 9 months ago
- F-Secure Lightweight Acqusition for Incident Response (FLAIR)☆16Updated 3 years ago
- JXA script for Mythic that prints the TCC.db☆15Updated 4 years ago
- ☆12Updated 3 years ago
- Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual☆14Updated 2 years ago