Trawler
Persistence scanner
A PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts by scanning for various persistence techniques.
PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.
310 stars
2 watching
33 forks
Language: PowerShell
last commit: 3 months ago blue-teamdfirincident-responsemalwarepersistencepowershellwindows
Related projects:
| Repository | Description | Stars |
|---|---|---|
 last-byte/persistencesniper | Automated detection of malicious persistence techniques in Windows machines. | 1,930 |
 zonksec/persistence-aggressor-script | A PowerShell script designed to evade detection by persisting on a compromised system through multiple evasion techniques | 173 |
 theflakes/reg_hunter | A tool for triaging and hunting Windows persistence mechanisms, providing forensic insights into system activity. | 143 |
 cyborgsecurity/poisonapple | A command-line tool for simulating and demonstrating persistence techniques on macOS systems. | 221 |
 johnlatwc/pypowershellxray | Decodes and analyzes encoded PowerShell scripts to identify potential shellcode and reverse-engineered APIs. | 215 |
 ntraiseharderror/kaiser | Toolset providing fileless persistence and anti-forensic capabilities for Windows 7 | 87 |
 diogo-fernan/ir-rescue | A tool for comprehensively collecting host forensic data during incident response and analysis. | 466 |
 411hall/jaws | A PowerShell script designed to gather information about Windows system vulnerabilities and potential attack vectors | 1,717 |
 darkoperator/posh-virustotal | A PowerShell module for interacting with the VirusTotal API to analyze suspicious files and URLs. | 119 |
 assetnote/surf | A tool that identifies and filters potential Server-Side Request Forgery (SSRF) vulnerabilities in cloud environments by probing external hosts. | 599 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 149 |
 karneades/malware-persistence | A collection of information on malware persistence mechanisms and techniques. | 165 |
 dxa4481/xssoauthpersistence | Exploring various techniques for maintaining persistence via Cross-Site Scripting (XSS) and OAuth | 77 |
 aegrah/panix | A modular Linux persistence framework providing various techniques to achieve persistent access on Linux systems | 465 |
 hasherezade/persistence_demos | Demonstrates various persistence methods used by malware | 219 |