zaneGittins / Huntress
PowerShell tool to triage systems
☆12Updated last year
Alternatives and similar repositories for Huntress:
Users that are interested in Huntress are comparing it to the libraries listed below
- Baseline a Windows System against LOLBAS☆25Updated 9 months ago
- ☆20Updated 2 years ago
- ☆26Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆14Updated last year
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆82Updated 5 months ago
- An exercise to practice deobfuscating PowerShell Scripts.☆28Updated last year
- Memory Baseliner is a script that can compare two windows memory images or perform frequency of occurrence / data stacking analysis on mu…☆50Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆91Updated 2 years ago
- Random tips and tricks RE: ransomware☆14Updated 3 years ago
- ☆72Updated 3 months ago
- ☆40Updated 3 years ago
- A running list of Windows sources and the related event ids.☆19Updated last year
- ESXi Cyber Security Incident Response Script☆22Updated 4 months ago
- A repository hosting example goodware evtx logs containing sample software installation and basic user interaction☆75Updated last year
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆64Updated 3 years ago
- ☆49Updated 2 weeks ago
- A PowerShell incident response script for quick triage☆78Updated 2 years ago
- Hunting Malicious Macros SANS Threathunting Summit 2021 Materials☆40Updated 3 years ago
- Sigma detection rules for hunting with the threathunting-keywords project☆52Updated this week
- ☆41Updated last year
- Pushes Sysmon Configs☆89Updated 3 years ago
- ☆45Updated this week
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Updated 9 months ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- PowerShell scripts for running Magnet RESPONSE forensic collection tool in large enterprises.☆23Updated 3 weeks ago
- Remote access and Antivirus Logging Database☆43Updated 9 months ago
- Random notes collected on the intertubes relating to DFIR☆32Updated last year
- Forensics artifacts collection☆19Updated 3 years ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆45Updated 9 months ago