grayfold3d

IR/Forensics PowerShell Twitter:@grayfold3d

Suffolk, VA

Pinned Repositories

KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
643 60 196192
DeepBlueCLI
Language:PowerShell0 1 00
EDR-Testing-Script
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter payloads
Language:Batchfile0 0 00
evtx
C# based evtx parser with lots of extras
Language:C#0 1 00
Get-KapeModuleBinaries
Parses KAPE module files and downloads binaries referenced by BinaryURL
Language:PowerShell17 5 01
KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
0 1 00
POSH-Triage
Tools for parsing Forensic images
Language:PowerShell41 7 25
PowerShell
A series of scripts
Language:PowerShell2 1 00
PSCrowdstrike
A PowerShell wrapper around Crowdstrike API
Language:PowerShell4 0 02
Start-SysmonInstall
Automate Sysmon install using @swiftonsecurity config
Language:PowerShell00

grayfold3d/POSH-Triage
Tools for parsing Forensic images
Language:PowerShell41 7 25
grayfold3d/Get-KapeModuleBinaries
Parses KAPE module files and downloads binaries referenced by BinaryURL
Language:PowerShell17 5 01
grayfold3d/PSCrowdstrike
A PowerShell wrapper around Crowdstrike API
Language:PowerShell4 0 02
grayfold3d/PowerShell
A series of scripts
Language:PowerShell2 1 00
grayfold3d/DeepBlueCLI
Language:PowerShell0 1 00
grayfold3d/EDR-Testing-Script
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter payloads
Language:Batchfile0 0 00
grayfold3d/evtx
C# based evtx parser with lots of extras
Language:C#0 1 00
grayfold3d/KapeFiles
This repository serves as a place for community created Targets and Modules for use with KAPE.
0 1 00
grayfold3d/Start-SysmonInstall
Automate Sysmon install using @swiftonsecurity config
Language:PowerShell00