From c6ce3ad6a29d170924694f9d5daadfa722196363 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Mon, 6 Sep 2021 14:47:55 +0700
Subject: [PATCH] Add: XForceIR/SideLoadHunter to DFIR Section

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 858b328..7bbb13b 100644
--- a/README.md
+++ b/README.md
@@ -1665,6 +1665,10 @@ This repository is created as an online bookmark for useful links, resources and
         <td><a href="https://github.com/williballenthin/process-forest">williballenthin/process-forest</a></td>
         <td>process-forest is a tool that processes Microsoft Windows EVTX event logs that contain process accounting events and reconstructs the historical process heirarchies.</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/XForceIR/SideLoadHunter">XForceIR/SideLoadHunter</a></td>
+        <td>SideLoadHunter is a PowerShell script and Sysmon configuration designed to aide defenders and incident responders identify evidence of DLL sideloading on Windows systems.</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/yampelo/beagle">yampelo/beagle</a></td>
         <td>Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.</td>