Collect-MemoryDump
PersistenceSniper
| Collect-MemoryDump | PersistenceSniper | |
|---|---|---|
| 2 | 5 | |
| 211 | 1,815 | |
| - | - | |
| 4.5 | 6.9 | |
| 2 months ago | 8 days ago | |
| PowerShell | PowerShell | |
| GNU General Public License v3.0 only | GNU General Public License v3.0 or later |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
Collect-MemoryDump
PersistenceSniper
- PersistenceSniper v1.13.0 and in-depth Wiki by @last0x00
- PersistenceSniper: a Powershell script to hunt for persistence techniques used on Windows machines
- PersistenceSniper: Powershell script that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines.
- PersistenceSniper: Powershell script that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines by @last0x00
What are some alternatives?
MemProcFS-Analyzer - MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
WinRice - Set up your brand new Windows devices up to a breathtaking 60 times faster.
PSCalendar - :calendar: A set of PowerShell commands for displaying calendars in the console.
Wreckfest-eventloop-randomizer - Simple Power-shell-Script, to read and randomize specific eventloop-tracks in wreckfest.
PSWinReporting - This PowerShell Module has multiple functionalities, but one of the signature features of this module is the ability to parse Security logs on Domain Controllers providing easy to use access to AD Events.
PSGPPreferences - A way to manage Group Policy Preferences through PowerShell
Standalone-PowerShell-Template - This is an example template that has a batch script that downloads the latest version of PowerShell from GitHub, and a batch script to run a PowerShell script with that version of PowerShell.
Prepare-VHD-for-Windows-AzureVM - PowerShell Module This repo is intend to help Cloud Admins and anyone that might need an easy and fast way to prepare a VHD to create a Windows Azure VM.
AutomaticMaintenance - Helps IT engineers to establish a continuous update process in large intertangled infrastructures.
Powershell - Automating the tasks related to infrastructure..
Harden-Windows-Security - Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Personal, Enterprise, Government and Military security levels | Read The Rationale https://github.com/HotCakeX/Harden-Windows-Security/blob/main/Rationale.md
CVE-2023-23397 - Simple PoC in PowerShell for CVE-2023-23397