securesean/Shim-Process-Scanner-Lite

Stars
8
Rank 2,090,665 (Top 42 %)
Language Batchfile
Created about 9 years ago
Updated about 9 years ago

securesean/Shim-Process-Scanner-Lite

securesean

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

A simple Batch script that prints the processes which contain shimming Dll's

DecryptAutoLogon

Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon

Shim-Process-Scanner

Windows x64 Process Scanner to detect application compatability shims

EducationalRAT

Starting Code for my How to Write Malware 101 Class. This is a Proof of Concept of a C# RAT (Remote Access Trojan) made by Sean Pierce (@secure_sean) to demonstrate to defenders the ease, speed, development goals, and characteristics of common malware. This is for educational use only.

sdbScanner

Volatility Plugin to scan for shimmed processes in Windows

Shim-Guard-Lite

This program will print out currently installed shims, their locations, install times and will register for events relating to the install of a new Shim Databases (SDB files)

ServiceSurvey

Quick script to enumerate services with particular focus on services listening on network interfaces from user land

Shim-Guard

This program will print out currently installed shims, their locations, install times and will register for events relating to the install of a new Shim Databases (SDB files)

SecuritySiteSpider

This is a PoC that spiders websites and lists security related information based on their response headers & meta tags and describes the site's security only based on that.

SdbIngestModule

An Autopsy Ingest Module for detecting Shim Database (SDB) files. Autopsy is built on SleutKit

PSP

Personal Security Project - Basic situational awareness for a user on a Windows computer