Kaiser
Persistence tool
Toolset providing fileless persistence and anti-forensic capabilities for Windows 7
Fileless persistence, attacks and anti-forensic capabilties.
87 stars
6 watching
33 forks
Language: C
last commit: about 6 years ago
Linked from 1 awesome list
anti-forensicsfile-lessforensicsmalware-researchpersistencepowershellsecuritywinapiwmi
shadawck/awesome-anti-forensicRelated projects:
| Repository | Description | Stars |
|---|---|---|
 last-byte/persistencesniper | Automated detection of malicious persistence techniques in Windows machines. | 1,930 |
 threatexpress/persistence-aggressor-script | A tool for creating and managing persistent malware components that can operate in multiple listener scenarios, including local and foreign listeners. | 42 |
 joeavanzato/trawler | A PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts by scanning for various persistence techniques. | 310 |
 pjrinaldi/wombatforensics | A multi-threaded GUI forensic analysis tool for Linux | 48 |
 theflakes/reg_hunter | A tool for triaging and hunting Windows persistence mechanisms, providing forensic insights into system activity. | 143 |
 hasherezade/persistence_demos | Demonstrates various persistence methods used by malware | 219 |
 zonksec/persistence-aggressor-script | A PowerShell script designed to evade detection by persisting on a compromised system through multiple evasion techniques | 173 |
 ewhitehats/invisiblepersistence | A Windows registry persistence mechanism that operates stealthily | 339 |
 m0nad/hellraiser | Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API | 562 |
 karneades/malware-persistence | A collection of information on malware persistence mechanisms and techniques. | 165 |
 aegrah/panix | A modular Linux persistence framework providing various techniques to achieve persistent access on Linux systems | 465 |
 yanghaoi/cobaltstrike_cna | A PowerShell script for maintaining persistence on Windows systems by utilizing various WinAPIs and Cobalt Strike features. | 533 |
 0xthirteen/staykit | A persistence kit for Cobalt Strike using a custom .NET assembly and leveraging various Windows techniques to maintain access after initial access is lost. | 468 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 149 |
 cyborgsecurity/poisonapple | A command-line tool for simulating and demonstrating persistence techniques on macOS systems. | 221 |