0xOFenomeno
Follow
Lists (3)
Stars
Strumenti VATINT - Intelligence sui veicoli e sui trasporti
Defanged Indicator of Compromise (IOC) Extractor.
Lookyloo is a web interface that allows users to capture a website page and then display a tree of domains that call each other.
Collaborative Incident Response platform
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
Detect WFP filters blocking EDR communications
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
A curated list of tools for incident response
Documentation and scripts to properly enable Windows event logs.
Timeline of Active Directory changes with replication metadata
Dump cookies and credentials directly from Chrome/Edge process memory
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
Find phishing kits which use your brand/organization's files and image.
Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
smbclient-ng, a fast and user friendly way to interact with SMB shares.
Tool to extract powerful tokens from Office desktop apps memory
Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files
Pure Python parser for Windows Event Log files (.evtx)
Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.
A modular vulnerability scanner with automatic report generation capabilities.
A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD…
This repository presents a proof-of-concept of CVE-2023-7028