From 9d1a5b3484ee2d6195c0e032ce882c0a432483d3 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Wed, 30 Mar 2022 10:21:40 +0700
Subject: [PATCH] Add: PSGumshoe/PSGumshoe to DFIR section

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 4ff44d9..59581d0 100644
--- a/README.md
+++ b/README.md
@@ -1805,6 +1805,10 @@ This repository is created as an online bookmark for useful links, resources and
         <td><a href="https://github.com/polylogyx/PolyMon">polylogyx/PolyMon</a></td>
         <td>PolyLogyx Monitoring Agent (PolyMon) is a Windows software that leverages the osquery tool and the PolyLogyx Extension to osquery, to provide a view into detailed information about process creations, network connections, file system changes and many other activities on the system.</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/PSGumshoe/PSGumshoe">PSGumshoe/PSGumshoe</a></td>
+        <td>PSGumshoe is a Windows PowerShell module for the collection of OS and domain artifacts for the purposes of performing live response, hunt, and forensics.</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/ptresearch/AttackDetection">ptresearch/AttackDetection</a></td>
         <td>The Attack Detection Team searches for new vulnerabilities and 0-days, reproduces it and creates PoC exploits to understand how these security flaws work and how related attacks can be detected on the network layer. Additionally, we are interested in malware and hackers’ TTPs, so we develop Suricata rules for detecting all sorts of such activities.</td>