Trawler

Persistence scanner

A PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts by scanning for various persistence techniques.

PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.

GitHub

310 stars
2 watching
32 forks
Language: PowerShell
last commit: about 1 month ago
blue-teamdfirincident-responsemalwarepersistencepowershellwindows

Related projects:

Repository Description Stars
last-byte/persistencesniper A tool for detecting and identifying persistent malware techniques in Windows machines using PowerShell 1,919
zonksec/persistence-aggressor-script A PowerShell script designed to evade detection by persisting on a compromised system through multiple evasion techniques 173
theflakes/reg_hunter A tool for triaging and hunting Windows persistence mechanisms, providing forensic insights into system activity. 142
cyborgsecurity/poisonapple A command-line tool for simulating and demonstrating persistence techniques on macOS systems. 221
johnlatwc/pypowershellxray Decodes and analyzes encoded PowerShell scripts to identify potential shellcode and reverse-engineered APIs. 215
ntraiseharderror/kaiser Toolset providing fileless persistence and anti-forensic capabilities for Windows 7 87
diogo-fernan/ir-rescue A tool for comprehensively collecting host forensic data during incident response and analysis. 466
411hall/jaws A PowerShell script designed to gather information about Windows system vulnerabilities and potential attack vectors 1,703
darkoperator/posh-virustotal A PowerShell module for interacting with the VirusTotal API to analyze suspicious files and URLs. 119
assetnote/surf A tool that identifies and filters potential Server-Side Request Forgery (SSRF) vulnerabilities in cloud environments by probing external hosts. 577
securityjoes/forensicminer Automates evidence collection and analysis from Windows machines using PowerShell. 148
karneades/malware-persistence A collection of information on malware persistence mechanisms and techniques. 165
dxa4481/xssoauthpersistence Exploring various techniques for maintaining persistence via Cross-Site Scripting (XSS) and OAuth 77
aegrah/panix A modular Linux persistence framework providing various techniques to achieve persistent access on Linux systems 442
hasherezade/persistence_demos Demonstrates various persistence methods used by malware 219