salehmuhaysin/Windows-Events

Stars
2
Language
PowerShell
Created almost 7 years ago
Updated almost 7 years ago

salehmuhaysin/Windows-Events

salehmuhaysin

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

DFIR-Tools

All the useful tools interesting to be used

TorDetector

This script accept a text file and collect any IP address (based on its format x.x.x.x) and check if it is one of Tor exit nodes

CarbonBlack_TaskManager

This script used to manage running multiple tasks on Carbon Black sensors.

evtxtoelk

Push evtx files to elasticsearch database

Desired_State_Configuration_Persistence

JumpList_Lnk_Parser

Parser for both JumpList and Lnk files artifacts

ListSSP

List Security Support Provider (SSP)

BrowserHistory_ELK

Script parse the browser history (Chrome, IE, and Firefox) and push the results to elasticsearch database

Yara_Duplicate_Rules

Python script to remove duplicate Yara rules from a specific file

SRUM_parser

parse Windows System Resource Usage Monitor (SRUM)

VirusTotalHashScanner

Check a list of hashes against VirusTotal to get the result

IoCs_detector

Detect indicator of compromise (MD5,SHA1,IP addresses) from a text file

Kaizen-Arabia-CTF-Writeups

here are all my writeups for Kaizen Arabia CTF

CSVFilterator

Filter CSV file (exclude/include) rows based on predefined rules

SLAE

this folder contain all the documents and codes I used to gain the SLAE certificate

LinuxFileMetadata

This script collect the file metadata (path, MD5hash, file size, creation date, modification date, last access, owner, and file type) of all files in the system and exported to csv file