joeavanzato/RetrievIR joeavanzato/RetrievIR

  • Stars
    star
    11
  • Rank 1,694,829 (Top 34 %)
  • Language
    PowerShell
  • License
    MIT License
  • Created about 1 year ago
  • Updated about 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
joeavanzato/RetrievIR
github

joeavanzato

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.

More Repositories

1

Trawler

PowerShell script to help Incident Responders discover potential adversary persistence mechanisms.
PowerShell
297
star
2

LogBoost

Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, Domain, ASN, DNS and Threat Indicator matches.
Go
84
star
3

crackdown

Helping Incident Responders hunt for potential persistence mechanisms on UNIX-based systems.
Go
13
star
4

ThreatSim

Threat Simulator for Enterprise Networks
Python
12
star
5

MACfuscator

Anti-Forensics Timeline Obfuscation Utility
Python
7
star
6

WMIHunter

Asynchronous Remote Evidence Retrieval for rapid network-wide threat hunting
PowerShell
7
star
7

velociraptor-timeline-creator

VTC - Velociraptor Timeline Creator
Go
6
star
8

RAID

Rapid Acqusition of Interesting Data
PowerShell
5
star
9

ExtCheck

File Signature Analysis Tool
Python
5
star
10

YARACheck

Update and use YARA rules from across the Internet against targeted files or directories.
Python
5
star
11

demo-react-flask-mui-auth

Example React app utilizing MaterialUI with Flask JWT-authed API backend.
JavaScript
5
star
12

MalCommands

Documenting Suspicious Command Lines
HTML
5
star
13

SimpleScanner

Basic XSS, SQLi and LFI Vulnerability Scanner
Python
3
star
14

LogonGrabber

Remote retrieval, filtering and analysis of Security.evtx logs for user activity analysis.
Python
3
star
15

WinGraph

Graph Visualizer for Windows Event Logs
Python
3
star
16

joeavanzato.github.io

JavaScript
2
star
17

PyShares

SharpShares..but in Python!
Python
2
star
18

IOCFeed

Python
2
star
19

NetPeek

TCP Port Scanner, FTP Anonymous Login Query, UDP Flooding
Python
2
star
20

PortCheck

Use TCP or UDP to check connection availability for remote hosts
Python
2
star
21

PacketSimulator

Python
1
star
22

EyeOfTheBeholder

Batchfile
1
star
23

PMATCH

Recursive file-hasher and string-matcher
Python
1
star
24

PythonWebServer

Python
1
star
25

QuickScan

Hunting for Abnormalities
Python
1
star
26

Outlooked-IOC

Tool for scanning an Outlook Inbox in order to discover Indicators of Compromise - intelligence dissemination/bulletins, *-ISAC Threads, etc,
Python
1
star