reg_hunter
Persistence hunter
A tool for triaging and hunting Windows persistence mechanisms, providing forensic insights into system activity.
Blueteam operational triage registry hunting/forensic tool.
142 stars
6 watching
19 forks
Language: Rust
last commit: over 1 year ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 last-byte/persistencesniper | A tool for detecting and identifying persistent malware techniques in Windows machines using PowerShell | 1,911 |
 joeavanzato/trawler | A PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts by scanning for various persistence techniques. | 308 |
 n4kedturtle/persistbof | A tool to automate common persistence mechanisms across various Windows environments | 266 |
 karneades/malware-persistence | A collection of information on malware persistence mechanisms and techniques. | 164 |
 0xthirteen/staykit | A persistence kit for Cobalt Strike using a custom .NET assembly and leveraging various Windows techniques to maintain access after initial access is lost. | 465 |
 aegrah/panix | A Linux persistence tool designed to support security research and detection engineering. | 410 |
 zonksec/persistence-aggressor-script | A PowerShell script designed to evade detection by persisting on a compromised system through multiple evasion techniques | 172 |
 ntraiseharderror/kaiser | Toolset providing fileless persistence and anti-forensic capabilities for Windows 7 | 86 |
 ewhitehats/invisiblepersistence | A Windows registry persistence mechanism that operates stealthily | 338 |
 outflanknl/sharphide | Creates hidden registry keys to persist data despite DFIR investigation | 465 |
 rabite0/hunter | A fast and feature-rich file browser built on top of Rust, providing an efficient terminal-based interface for managing files and directories. | 1,322 |
 cyborgsecurity/poisonapple | A command-line tool for simulating and demonstrating persistence techniques on macOS systems. | 221 |
 hasherezade/persistence_demos | Demonstrates various persistence methods used by malware | 219 |
 beahunt3r/windows-hunting | A collection of tools and resources to aid Windows threat hunters in identifying common security artifacts. | 347 |
 teknasyon-teknoloji/persistencekit | A library providing a simple way to store and retrieve Codable objects in various persistence layers | 155 |