antoto's Stars
Squiblydoo/Chromagnon
Chrome/Chromium Forensic Tool : Parses History, Visited Links, Downloaded Files and Cache
itm4n/PPLmedic
Dump the memory of any PPL with a Userland exploit chain
sonnyakhere/LOLBINS-HUNT
This query identifies Microsoft-signed Binaries and Scripts that are not system initiated. This technique is commonly used in phishing attacks.
wagga40/Zircolite
A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs