trustedsec / tscopyLinks
☆91Updated 3 years ago
Alternatives and similar repositories for tscopy
Users that are interested in tscopy are comparing it to the libraries listed below
Sorting:
- Detect possible sysmon logging bypasses given a specific configuration☆111Updated 6 years ago
- Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.☆53Updated last year
- InsecurePowerShell is PowerShell with some security features removed.☆104Updated 7 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆43Updated 6 years ago
- ☆45Updated 2 years ago
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- Manipulate timestamps on NTFS☆51Updated 10 years ago
- AV/EDR evasion via direct system calls.☆32Updated 4 years ago
- ☆38Updated 3 years ago
- Carbon Black Response IR tool☆53Updated 4 years ago
- See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)☆105Updated 2 years ago
- A repository that maps API calls to Sysmon Event ID's.☆122Updated 2 years ago
- Blueteam operational triage registry hunting/forensic tool.☆147Updated 2 years ago
- PoC that manipulates Windows file times using SetFileTime() API☆61Updated 6 years ago
- isodump - ISO dump utility☆40Updated 5 years ago
- Powershell Event Tracing Toolbox☆75Updated 3 years ago
- ☆95Updated 2 years ago
- Extract BITS jobs from QMGR queue and store them as CSV records☆75Updated 3 months ago
- A powershell parser for https://github.com/ufrisk/MemProcFS☆44Updated 4 years ago
- ☆34Updated 2 years ago
- A library for fast parse & import of Windows Eventlogs into Elasticsearch.☆85Updated last month
- Code Exec via Excel☆87Updated 7 years ago
- AdHoc solutions☆48Updated last year
- Evtx Log (xml) Browser☆56Updated 2 years ago
- Petaq - Purple Team Command & Control Server☆105Updated 2 years ago
- ☆148Updated last year
- LLMNR/NBNS/mDNS Spoofing Detection Toolkit☆59Updated 3 years ago
- ARTi-C2 is a post-exploitation framework used to execute Atomic Red Team test cases with rapid payload deployment and execution capabili…☆175Updated 9 months ago
- IcedID Decryption Tool☆28Updated 4 years ago
- Binary commandline executable to parse ETL files☆67Updated 6 years ago