WiredPulse

Pinned Repositories

Anydesk_Forensics
Language:PowerShell13 2 05
AutomatedProfiler
Automated forensics written in PowerShell
Language:Perl33 10 011
BlueSpectrum
An IOC framework written in PowerShell
Language:PowerShell17 7 19
Group_Policy
A series of GPO templates
19 5 03
Invoke-Fail2Ban
PowerShell version of Fail2Ban
Language:PowerShell11 3 12
Invoke-HiveNightmare
PoC for CVE-2021-36934, which enables a standard user to be able to retrieve the SAM, Security, and Software Registry hives in Windows 10 version 1809 or newer
Language:PowerShell34 2 016
Invoke-SRUMDump
A pure PowerShell/ .NET DFIR capability that dumps the Windows SRUM (System Resource Usage Monitor) database to CSVs for analysis.
Language:PowerShell13 1 00
PoSh-R2
PowerShell - Rapid Response... For the incident responder in you!
Language:PowerShell294 34 268
PoSh-R2_GUI
GUI version of PoSh-R2
Language:PowerShell10 3 03
PowerShell
A series of scripts
Language:PowerShell96 18 030

WiredPulse's Repositories

WiredPulse/PoSh-R2
PowerShell - Rapid Response... For the incident responder in you!
Language:PowerShell294 34 268
WiredPulse/PowerShell
A series of scripts
Language:PowerShell96 18 030
WiredPulse/Invoke-HiveNightmare
PoC for CVE-2021-36934, which enables a standard user to be able to retrieve the SAM, Security, and Software Registry hives in Windows 10 version 1809 or newer
Language:PowerShell34 2 016
WiredPulse/AutomatedProfiler
Automated forensics written in PowerShell
Language:Perl33 10 011
WiredPulse/Anydesk_Forensics
Language:PowerShell13 2 05
WiredPulse/Invoke-SRUMDump
A pure PowerShell/ .NET DFIR capability that dumps the Windows SRUM (System Resource Usage Monitor) database to CSVs for analysis.
Language:PowerShell13 1 00
WiredPulse/Invoke-Fail2Ban
PowerShell version of Fail2Ban
Language:PowerShell11 3 12
WiredPulse/Invoke-AZExplorer
Microsoft Azure Survey
Language:PowerShell8 2 12
WiredPulse/TeamViewer_Forensics
A series of functions to parse Teamviewer logs to answer specific questions
Language:PowerShell8 3 02
WiredPulse/ConnectWise_Forensics
Language:PowerShell5 3 0
WiredPulse/IIS_Log_Parser
IIS Logs
Language:PowerShell5 2 02
WiredPulse/EventLog_Parsers
Series of scripts to parse the event log for analysis
Language:PowerShell4 2 0
WiredPulse/Invoke-HAFNIUMCheck.ps1
Script used to identify compromise via CVEs 2021-26855, 26857, 26858, and 27065
Language:PowerShell4 3 33
WiredPulse/Briefs-and-Guides
2 3 0
WiredPulse/Invoke-ProcessSuspend
Suspending Processes using PS
Language:PowerShell2 2 0
WiredPulse/RMM_hunt
Google SecOps script to identify remote access tools
21
WiredPulse/CVE-Checker
Collection of script to check for CVEs
Language:Shell1 2 01
WiredPulse/Invoke-HashFinder
Searches for a supplied list of SHA1 or SHA256 hashes on a system. Requires either a file size or creation date that is associated with the binary that the hashes were retrieved from.
Language:PowerShell1 2 01
WiredPulse/Invoke-HiveDreams
A capability to identify and remediate CVE-2021-36934 (HiveNightmare)
Language:PowerShell1 2 01
WiredPulse/Invoke-PrinterNightmareResponse
Language:PowerShell1 2 02
WiredPulse/PoSh-Bitvise-Log-Parser
Parsing Bitvise logs with PowerShell
Language:PowerShell1 1 0
WiredPulse/FirstAlert
A very simple script to aid in preventing ransomware payloads
Language:PowerShell3 01
WiredPulse/Get-TeamsFiles
Downloads all files that you've ever uploaded to Microsoft Teams
Language:PowerShell2 0
WiredPulse/HiveNightmare
Exploit allowing you to read registry hives as non-admin on Windows 10 and 11
Language:C++1 0
WiredPulse/Invoke-PSSlack
Slack + PowerShell = :)
Language:PowerShell2 0
WiredPulse/Invoke-RegParser
2 0
WiredPulse/Invoke-SinkholeDomain
Sinkholes domains
Language:PowerShell2 0
WiredPulse/PowerShell-Saturday
This repository is a place to store Speaker content for the Raleigh PowerShell Saturday events.
1 0
WiredPulse/PS_RMM_Hunt
Language:PowerShell
WiredPulse/which-reality
PHP code to determine which reality (Server OS and web app versions) the app is running in (yeah... it's a play on Rick and Morty)
Language:Shell1 0