stuartjash / aftermathLinks
Aftermath is a free macOS incident response framework
☆32Updated this week
Alternatives and similar repositories for aftermath
Users that are interested in aftermath are comparing it to the libraries listed below
Sorting:
- Post-Infection Collection Toolkit☆95Updated 2 years ago
- Suite of tools to facilitate attacks against the Jamf macOS management platform.☆185Updated 4 years ago
- Swift Command line tool used for proactive detection of malicious activity on macOS systems.☆68Updated 5 years ago
- Aftermath is a free macOS IR framework☆539Updated last month
- https://wojciechregula.blog/post/macos-red-teaming-get-ad-credentials-from-nomad/☆42Updated 3 years ago
- Unleash the power of the Falcon Platform at the CLI☆123Updated last week
- Automatic security lookups from your clipboard☆24Updated last year
- CrowdStrike Archive Scan Tool☆85Updated 3 years ago
- This contains all the CrowdStrike API work I've done☆21Updated 5 years ago
- Lightweight security tool for auditing your organization's Conditional Access Policies (CAPs) in Microsoft Entra ID for potential misconf…☆74Updated 6 months ago
- ☆30Updated 4 months ago
- Pokes users about outstanding security risks found by Crowdstrike Spotlight or vmware Workspace ONE so they secure their own endpoint.☆29Updated 2 weeks ago
- A cross platform parser for Apple UnifiedLogs!☆278Updated last month
- ☆146Updated this week
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆95Updated last month
- MDM Migrator is now replaced by JUMP-IN☆24Updated 4 months ago
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Updated last year
- ☆61Updated 2 years ago
- Parser fo macOS/iOS FSEvents Logs☆38Updated last year
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆157Updated 5 months ago
- The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆24Updated last month
- Queries from the blog posts.☆15Updated 11 months ago
- VirtualGHOST Detection Tool☆92Updated last year
- ESXi Cyber Security Incident Response Script☆25Updated last year
- A triage data collection script for macOS☆28Updated 4 years ago
- Advanced Hunting Queries☆19Updated 2 weeks ago
- A repository for open-source resources created for use with or alongside Jamf Protect.☆209Updated 2 months ago
- A PowerShell-based script to analyze network logs from CSV files and detect potential beaconing behavior. Supports VirusTotal integration…☆17Updated 4 months ago
- Programmatic Electron fuse detection☆19Updated last year
- ☆70Updated 3 years ago