Silv3rHorn

yk's repositories

Extract common Windows artifacts from source images and VSCs

Language:PythonApache-2.060 8 8

BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.

Language:PythonMIT41 6 6

evtx2json extracts events of interest from event logs, dedups them, and exports them to json.

Language:PythonApache-2.039 6 2

Miscellaneous Scripts

Language:Python17 20

Attempt to replicate the functions of auto_rip by Corey Harrell in Python.

Language:Python13 3 6

Scripts that parse macOS data objects

Language:PythonGPL-3.04 3 1

GCP IR Notes

Language:Jupyter Notebook2 10

Retrieves the definitions of Windows Event Log messages embedded in Windows binaries and provides them in discoverable formats. #nsacyber

Language:C#NOASSERTION100

EVTXtract recovers and reconstructs fragments of EVTX log files from raw binary data, including unallocated space and memory images.

Language:PythonApache-2.0010

fbclicker is a set of scripts (currently only 1) to automate browsing activities on Facebook using Selenium.

Language:PythonApache-2.0010

Scripts that mount and unmount HFS e01 images; based on SANS FOR518 method 1

Language:Python010

Google Chrome browser extension that expands FaceBook posts.

Language:JavaScriptApache-2.0010

010

Parse Windows Prefetch files: Supports XP - Windows 10 Prefetch files

Language:PythonNOASSERTION000