Alternatives and similar repositories for PowerWalker

Users that are interested in PowerWalker are comparing it to the libraries listed below

• miriamxyra / Excel-EventList-OLD
  EventList - the Baseline Event Analyzer
  ☆11Updated 5 years ago
• giMini / PowerRSA
  Generate RSA keys, encrypt and decrypt data
  ☆24Updated 4 years ago
• stolenbytes / apcforthewin
  ☆16Updated 7 years ago
• mattifestation / UnicornPowerShell
  A PowerShell binding for the Unicorn Engine
  ☆17Updated 9 years ago
• hasherezade / IAT_patcher_samples
  Sample libraries to be used with IAT Patcher
  ☆33Updated 2 years ago
• psmitty7373 / eif
  Evil Reflective DLL Injection Finder
  ☆47Updated 6 years ago
• matthastings / PSalander
  ☆52Updated 6 years ago
• glinares / CSCGuard
  Protects and logs suspicious and malicious usage of .NET CSC.exe and Runtime C# Compilation
  ☆25Updated 7 years ago
• MortenSchenk / Windows-Write-Execute
  Find subfolders in the Windows folder which have bad ACL and allow write and execute
  ☆14Updated 9 years ago
• A-mIn3 / Windows_Postex
  Post-explotation Hacks
  ☆14Updated 6 years ago
• mattifestation / WindowsEventLogMetadata
  Event metadata collected across all manifest-based ETW providers on Window 10 1903
  ☆31Updated 5 years ago
• mattifestation / CatalogTools
  A PowerShell module to assist in parsing and managing catalog files.
  ☆21Updated 8 years ago
• OsandaMalith / VBShellCode
  Making shellcode UD - https://osandamalith.com
  ☆24Updated 8 years ago
• abhisek / RandomCode
  Random Code Store
  ☆17Updated 2 years ago
• airbus-cert / PSTrace
  Trace ScriptBlock execution for powershell v2
  ☆40Updated 5 years ago
• libyal / libfwevt
  Library for Windows XML Event Log (EVTX) data types
  ☆18Updated 8 months ago
• matthewdunwoody / PS_logging_reg
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Updated 8 years ago
• nccgroup / WindowsMemPageDelta
  A Microsoft Windows service to provide telemetry on Windows executable memory page changes to facilitate threat detection
  ☆31Updated 4 years ago
• Cn33liz / p0shKiller
  ☆63Updated 9 years ago
• SummitRoute / srepp_server
  Summit Route End Point Protection - Server code
  ☆12Updated 9 years ago
• WiredPulse / Invoke-GhostLog
  Removal of certain event logs within a Windows OS
  ☆8Updated 5 years ago
• zacbrown / PowerShellMethodAuditor
  PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.
  ☆38Updated 7 years ago
• mattifestation / MSFTTraceMessageFormat
  All TMF files that I extracted from Microsoft PDBs.
  ☆12Updated 5 years ago
• EricZimmerman / SDB
  Parse Microsoft shim databases
  ☆30Updated 4 months ago
• davidpany / rr_parseomater
  RegRipper wrapper for simplified bulk parsing or registry hives
  ☆9Updated 6 years ago
• conix-security / debug_inject
  Shellcode injection using debugging APIs
  ☆19Updated 11 years ago
• ctxis / capemon
  CAPE monitor DLLs
  ☆41Updated 5 years ago
• herrcore / CmdDesktopSwitch
  CmdDesktopSwitch is a small utility that lists all windows desktops and provides the option to switch between them. This can be used to i…
  ☆35Updated 9 years ago
• Cn33liz / TpmInitUACAnniversaryBypass
  Bypassing User Account Control (UAC) using TpmInit.exe
  ☆42Updated 8 years ago
• zacbrown / hiddentreasure-etw-demo
  Basic demo for Hidden Treasure talk.
  ☆49Updated 7 years ago