Pinned Repositories
awesome-iocs
A collection of sources of indicators of compromise.
awesome-IT-films
:tv: A curated list of awesome films about IT & geek people.
awesome-windows-domain-hardening
A curated list of awesome Security Hardening techniques for Windows.
Batchfiles
General system support batch files
Collection-of-Useful-Scripts
This is a collection of useful scripts from various sources
Invoke-LiveResponse
Invoke-LiveResponse
IRCollect
Windows Incident Respose Script
scripts
The dumping ground - Collection of useful scripts - VBS, powershell and batch files
security
Windows security focused scripts
WEFFLES
Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
insystemsco's Repositories
insystemsco/Tanium-1
Collection of various custom Tanium Sensors & Packages
insystemsco/WEFFLES
Build a fast, free, and effective Threat Hunting/Incident Response Console with Windows Event Forwarding and PowerBI
insystemsco/ACE
Automated, Collection, and Enrichment Platform
insystemsco/CSASC
Cobalt Strike Aggressor Script Collection
insystemsco/Download-IOCBucket
Python program to download IOCBucket.com IOC and YARA files
insystemsco/FECT
Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
insystemsco/flare-wmi
insystemsco/Invoke-MemCap
Execute WinPMem and archive capture
insystemsco/ioc_parser
Tool to extract indicators of compromise from security reports in PDF format
insystemsco/ioc_writer
insystemsco/munger
IOC Collector and parser
insystemsco/NOAH
PowerShell No Agent Hunting
insystemsco/ntds-tools
Tools for NTDS.dit
insystemsco/Pentest_tools
insystemsco/PowerSCCM
PowerSCCM - PowerShell module to interact with SCCM deployments
insystemsco/PowerShell-Scripts
insystemsco/powershell-scripts-1
Various PowerShell sripts I've written or composed over the years.
insystemsco/PS-DigitalForensics
PowerShell scripts for Hard Drive forensics and parsing Windows Artifacts
insystemsco/PS-GetAjayHackedStatus
A simple PowerShell Module for finding IOC's across your Windows Network
insystemsco/PSTanium
PowerShell module to work with Tanium Server's SOAP API.
insystemsco/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
insystemsco/sysmon-config
Sysmon configuration file template with default high-quality event tracing
insystemsco/sysmonreporter
A Powershell script that parses the SysMon events on a Windows 10+ computer and generates some initial reports to assist with live incident response investigations.
insystemsco/Tanium
To be used with Tanium Platform
insystemsco/tools
Tools and exploits used during OSCP preparation
insystemsco/werejugo
Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs
insystemsco/windows-itpro-docs
This is used for contributions to the Windows 10 content for IT professionals on docs.microsoft.com.
insystemsco/WindowsDefenderATP-Hunting-Queries
Sample queries for Advanced hunting in Windows Defender ATP
insystemsco/yara-forensics
Set of Yara rules for finding files using magics headers
insystemsco/Yara_Merger
Merge all Yara rules from official Yara github repository in one .yar file