Repositories list

• dissect.target

  Public
  The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access to various data sources inside disk images or file collections (a.k.a. targets).

  Python

  •

  GNU Affero General Public License v3.0

  •48•0•0•0•Updated Nov 8, 2024Nov 8, 2024

• RestartManagerArtifacts

  Public
  A forensic tool for parsing Restart Manager database

  C

  •

  MIT License

  •0•1•0•0•Updated Sep 11, 2024Sep 11, 2024

• ir-automation

  Public
  Incident Response automation scripts

  HCL

  •1•3•0•0•Updated Aug 14, 2024Aug 14, 2024

• PassiveAggression

  Public
  Source code and examples for PassiveAggression

  C#

  •

  MIT License

  •11•54•0•0•Updated Jun 6, 2024Jun 6, 2024

• process-cloning

  Public
  The Definitive Guide To Process Cloning on Windows

  C

  •

  MIT License

  •38•437•0•2•Updated Jan 3, 2024Jan 3, 2024

• Antignis

  Public
  Source code and examples for Antignis

  C#

  •

  Apache License 2.0

  •2•36•0•0•Updated Oct 21, 2022Oct 21, 2022

• sysmon-indepth

  Public
  Understanding the operation and limitations of Sysmon's events

  MIT License

  •3•13•0•0•Updated Sep 15, 2022Sep 15, 2022

• concealed_code_execution

  Public
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows

  C

  •

  MIT License

  •26•200•0•0•Updated Aug 12, 2022Aug 12, 2022

• red-mudnester

  Public
  Jupyter Notebook

  •

  MIT License

  •1•6•0•0•Updated Aug 8, 2022Aug 8, 2022

• accesstokens_are_fun

  Public
  Repository containing examples to play with access tokens and JWTs

  PowerShell

  •

  MIT License

  •3•1•0•0•Updated Jul 13, 2022Jul 13, 2022