Kaiser
Persistence tool
Toolset providing fileless persistence and anti-forensic capabilities for Windows 7
Fileless persistence, attacks and anti-forensic capabilties.
86 stars
6 watching
33 forks
Language: C
last commit: almost 6 years ago
Linked from 1 awesome list
anti-forensicsfile-lessforensicsmalware-researchpersistencepowershellsecuritywinapiwmi
shadawck/awesome-anti-forensicRelated projects:
| Repository | Description | Stars |
|---|---|---|
 last-byte/persistencesniper | A tool for detecting and identifying persistent malware techniques in Windows machines using PowerShell | 1,911 |
 threatexpress/persistence-aggressor-script | A tool for creating and managing persistent malware components that can operate in multiple listener scenarios, including local and foreign listeners. | 42 |
 joeavanzato/trawler | A PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts by scanning for various persistence techniques. | 308 |
 pjrinaldi/wombatforensics | A multi-threaded GUI forensic analysis tool for Linux | 47 |
 theflakes/reg_hunter | A tool for triaging and hunting Windows persistence mechanisms, providing forensic insights into system activity. | 142 |
 hasherezade/persistence_demos | Demonstrates various persistence methods used by malware | 219 |
 zonksec/persistence-aggressor-script | A PowerShell script designed to evade detection by persisting on a compromised system through multiple evasion techniques | 172 |
 ewhitehats/invisiblepersistence | A Windows registry persistence mechanism that operates stealthily | 338 |
 m0nad/hellraiser | Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API | 562 |
 karneades/malware-persistence | A collection of information on malware persistence mechanisms and techniques. | 164 |
 aegrah/panix | A Linux persistence tool designed to support security research and detection engineering. | 410 |
 yanghaoi/cobaltstrike_cna | A PowerShell script for maintaining persistence on Windows systems by utilizing various WinAPIs and Cobalt Strike features. | 530 |
 0xthirteen/staykit | A persistence kit for Cobalt Strike using a custom .NET assembly and leveraging various Windows techniques to maintain access after initial access is lost. | 465 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 148 |
 cyborgsecurity/poisonapple | A command-line tool for simulating and demonstrating persistence techniques on macOS systems. | 221 |