Search Results - RepositoryStats

107

677

apache-2.0

27

UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, O...

Created 2020-01-08

989 commits to main branch, last one 16 days ago

MemProcFS-Analyzer evild3ad

47

421

gpl-3.0

20

MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR

dfir memprocfs powershell live-response memory-forensics digital-forensics incident-response

Created 2021-05-15

135 commits to main branch, last one 3 months ago

MDE-DFIR-Resources cyb3rmik3

37

316

mit

10

A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.

kql mde dfir kusto microsoft resources kusto-query curated-list live-response digital-forensics incident-response curated-collections kusto-query-language microsoft-defender-for-endpoint digital-forensics-incident-response

Created 2023-11-01

48 commits to main branch, last one about a month ago

Collect-MemoryDump evild3ad

28

212

gpl-3.0

6

Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR

dfir powershell live-response memory-forensics digital-forensics incident-response memory-acquisition

Created 2022-07-14

32 commits to main branch, last one 3 months ago

mediator lawndoc

15

96

agpl-3.0

4

An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.

python plugins python3 handlers python-3 red-team pentesting red-teaming live-response plugin-system python-script reverse-shell reverse-shells security-tools pentesting-tools incident-response socket-programming end-to-end-encryption incident-response-tooling

Created 2021-01-08

146 commits to main branch, last one 7 months ago