mirror of
https://github.com/pe3zx/my-infosec-awesome.git
synced 2024-10-01 07:45:36 -04:00
Add: XForceIR/SideLoadHunter to DFIR Section
This commit is contained in:
parent
af64e7b7a3
commit
c6ce3ad6a2
@ -1665,6 +1665,10 @@ This repository is created as an online bookmark for useful links, resources and
|
|||||||
<td><a href="https://github.com/williballenthin/process-forest">williballenthin/process-forest</a></td>
|
<td><a href="https://github.com/williballenthin/process-forest">williballenthin/process-forest</a></td>
|
||||||
<td>process-forest is a tool that processes Microsoft Windows EVTX event logs that contain process accounting events and reconstructs the historical process heirarchies.</td>
|
<td>process-forest is a tool that processes Microsoft Windows EVTX event logs that contain process accounting events and reconstructs the historical process heirarchies.</td>
|
||||||
</tr>
|
</tr>
|
||||||
|
<tr>
|
||||||
|
<td><a href="https://github.com/XForceIR/SideLoadHunter">XForceIR/SideLoadHunter</a></td>
|
||||||
|
<td>SideLoadHunter is a PowerShell script and Sysmon configuration designed to aide defenders and incident responders identify evidence of DLL sideloading on Windows systems.</td>
|
||||||
|
</tr>
|
||||||
<tr>
|
<tr>
|
||||||
<td><a href="https://github.com/yampelo/beagle">yampelo/beagle</a></td>
|
<td><a href="https://github.com/yampelo/beagle">yampelo/beagle</a></td>
|
||||||
<td>Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.</td>
|
<td>Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.</td>
|
||||||
|
Loading…
Reference in New Issue
Block a user