Meerkat
Endpoint analysis tool
A collection of PowerShell modules for gathering and analyzing Windows-based endpoint artifacts.
A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
436 stars
31 watching
82 forks
Language: PowerShell
last commit: 3 months ago
Linked from 2 awesome lists
analysisbaselineblueforensicshuntincidentlogmonitorpurplereconredresponsescansecuritysiemsocteamthreatthreat-huntingtriage
sbilly/awesome-security
meirwah/awesome-incident-responseRelated projects:
| Repository | Description | Stars |
|---|---|---|
 infocyte/pshunt | A Powershell Threat Hunting Module designed to scan and survey remote endpoints for indicators of compromise or comprehensive system information. | 280 |
 mandiant/capa | An executable file analysis tool that identifies capabilities and potential malicious behaviors. | 4,944 |
 fabian-jung/tsmp | Tool to generate meta-programming capabilities from source code analysis | 97 |
 tcopeland/pippi | Analyzes runtime behavior of Ruby class API usage in test suites to detect suboptimal usage patterns | 287 |
 dissectmalware/officeforensictools | A Python-based collection of tools for gathering forensic information from Office documents | 26 |
 sentinelabs/sentinellabs_revcore_tools | A suite of PowerShell scripts and tools for reverse engineering Windows malware analysis. | 90 |
 joeavanzato/trawler | A PowerShell script designed to help Incident Responders discover potential indicators of compromise on Windows hosts by scanning for various persistence techniques. | 310 |
 hatriot/zarp | A network attack tool designed to manage and analyze local networks | 1,449 |
 johnlatwc/pypowershellxray | Decodes and analyzes encoded PowerShell scripts to identify potential shellcode and reverse-engineered APIs. | 215 |
 zer0yu/aggressorscripts | A collection of PowerShell scripts providing tools and techniques for exploring and analyzing Windows systems | 7 |
 netspi/pesecurity | A PowerShell module to analyze Windows binary files for various security features and compilation settings. | 626 |
 pdaian/mev | A toolset for modeling and analyzing the extractable value of mining operations using Python. | 125 |
 mingyuan-xia/patdroid | An Android-specific toolkit for analyzing and understanding APK files | 118 |
 mpast/mobileaudit | An application that performs static analysis and malware detection on Android APKs to identify security vulnerabilities. | 206 |
 joxeankoret/pyew | A command-line tool for analyzing malware and disassembling binary files | 386 |