oneoffdallas/check_ioc oneoffdallas/check_ioc

  • Stars
    star
    76
  • Rank 420,374 (Top 9 %)
  • Language
    PowerShell
  • License
    GNU General Publi...
  • Created over 9 years ago
  • Updated almost 7 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
oneoffdallas/check_ioc
github

oneoffdallas

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was primarily written to be run on a schedule from a monitoring engine such as Nagios, however, it may also be run from a command-line (for incident response). For more information on the script and the logic behind it, check out https://www.linuxincluded.com/uncovering-indicators-of-compromise.

More Repositories

1

dohservers

A list of publicly available DNS over HTTPS (DoH) servers
243
star
2

pfsense-nagios-checks

Nagios checks specific to pfSense -- services, VPNs, state table, and more. Should be used in conjunction with official Nagios plugins for better coverage. For more information on how to implement the pfSense/Nagios solution beginning to end, visit https://www.linuxincluded.com/monitoring-pfsense-with-nagios-xi-using-ssh-part-1/
Perl
35
star
3

nagios_scripts

A collection of Nagios scripts. All of them *should* have a corresponding entry on Nagios Exchange. At some point, various scripts may also have a write-up on my website -- http://www.linuxincluded.com.
PowerShell
1
star