reg_hunter
Persistence hunter
A tool for triaging and hunting Windows persistence mechanisms, providing forensic insights into system activity.
Blueteam operational triage registry hunting/forensic tool.
143 stars
6 watching
19 forks
Language: Rust
last commit: over 2 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 last-byte/persistencesniper | Automated detection of malicious persistence techniques in Windows machines. | 1,930 |
 joeavanzato/trawler | A PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts by scanning for various persistence techniques. | 310 |
 n4kedturtle/persistbof | A tool to automate common persistence mechanisms across various Windows environments | 269 |
 karneades/malware-persistence | A collection of information on malware persistence mechanisms and techniques. | 165 |
 0xthirteen/staykit | A persistence kit for Cobalt Strike using a custom .NET assembly and leveraging various Windows techniques to maintain access after initial access is lost. | 468 |
 aegrah/panix | A modular Linux persistence framework providing various techniques to achieve persistent access on Linux systems | 465 |
 zonksec/persistence-aggressor-script | A PowerShell script designed to evade detection by persisting on a compromised system through multiple evasion techniques | 173 |
 ntraiseharderror/kaiser | Toolset providing fileless persistence and anti-forensic capabilities for Windows 7 | 87 |
 ewhitehats/invisiblepersistence | A Windows registry persistence mechanism that operates stealthily | 339 |
 outflanknl/sharphide | Creates hidden registry keys to persist data despite DFIR investigation | 468 |
 rabite0/hunter | A fast and feature-rich file browser built on top of Rust, providing an efficient terminal-based interface for managing files and directories. | 1,326 |
 cyborgsecurity/poisonapple | A command-line tool for simulating and demonstrating persistence techniques on macOS systems. | 221 |
 hasherezade/persistence_demos | Demonstrates various persistence methods used by malware | 219 |
 beahunt3r/windows-hunting | A collection of tools and resources to aid Windows threat hunters in identifying common security artifacts. | 347 |
 teknasyon-teknoloji/persistencekit | A library providing a simple way to store and retrieve Codable objects in various persistence layers | 154 |