jason-yung

Pinned Repositories

Active_Directory_Advanced_Threat_Hunting
This repo is about Active Directory Advanced Threat Hunting
Language:PowerShell00
awesome-forensics
A curated list of awesome forensic analysis tools and resources
0 0 00
AzureHunter
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
Language:PowerShell00
blue-jupyter
Jupyter Notebooks for the Blue Team
Language:Jupyter Notebook00
dfis
Digital Forensic Investigative Scripts
Language:Perl00
ErebusGate
ErebusGate for Nim Bypass AV/EDR
Language:Nim00
forensic-artifact-automation
A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing open-source tools, such as Kape (Kroll Artifact Parser and Extractor), to forensically acquire and process necessary artifact used in compromise assessments. Additional scripts provide pre-processing automation ca
Language:PowerShell00
Havoc
The Havoc Framework
Language:Go00
LogonTracer
Investigate malicious Windows logon by visualizing and analyzing Windows event log
Language:Python00
Mandiant-Azure-AD-Investigator
Language:PowerShell00

jason-yung's Repositories

jason-yung/Active_Directory_Advanced_Threat_Hunting
This repo is about Active Directory Advanced Threat Hunting
Language:PowerShell00
jason-yung/awesome-forensics
A curated list of awesome forensic analysis tools and resources
0 0 00
jason-yung/AzureHunter
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
Language:PowerShell00
jason-yung/blue-jupyter
Jupyter Notebooks for the Blue Team
Language:Jupyter Notebook00
jason-yung/dfis
Digital Forensic Investigative Scripts
Language:Perl00
jason-yung/ErebusGate
ErebusGate for Nim Bypass AV/EDR
Language:Nim00
jason-yung/forensic-artifact-automation
A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing open-source tools, such as Kape (Kroll Artifact Parser and Extractor), to forensically acquire and process necessary artifact used in compromise assessments. Additional scripts provide pre-processing automation ca
Language:PowerShell00
jason-yung/Havoc
The Havoc Framework
Language:Go00
jason-yung/LogonTracer
Investigate malicious Windows logon by visualizing and analyzing Windows event log
Language:Python00
jason-yung/Mandiant-Azure-AD-Investigator
Language:PowerShell00
jason-yung/toolkit
A toolkit for the post-mortem examination of Docker containers from forensic HDD copies
Language:Python00
jason-yung/WELA
WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）
Language:PowerShell00
jason-yung/windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合
Language:C00