"topic:windows-security" — Search

263 results for “topic:windows-security”

Windows Events Attack Samples

datasetdetection-engineeringdfirevtxmitre-attackthreat-huntingwindows-securitywinlogbeat

Weaponize DLL hijacking easily. Backdoor any function in any DLL.

backdoordll-hijackingdll-sideloadinggolanginitial-accessmalwarepentestingpersistenceredteamsecuritysecurity-toolswindowswindows-security

alphaSeclab/windows-security

Resources About Windows Security. 1100+ Open Source Tools. 3300+ Blog Post and Videos.

498115Updated 1 week ago

amsiapplockerdllpepowershellsysinternaluacwindows-defenderwindows-security

Netflix-Skunkworks/stethoscope-app

A desktop application that checks security-related settings and makes recommendations for improvements without requiring central device management or automated reporting.

JavaScript46456Updated 1 week ago

electronendpoint-securityhacktoberfestjavascriptlinux-securitymacos-securitysecurityusable-securitywindows-security

christophetd/spoofing-office-macro

:fish: PoC of a VBA macro spawning a process with a spoofed parent and command line.

VBA38180Updated 3 weeks ago

office-macroparent-process-spoofingprocess-injectionwindows-internalswindows-security

chryzsh/awesome-windows-securityArchived

List of Awesome Windows Security Resources

31251Updated 3 weeks ago

active-directoryhackingwindowswindows-security

S1ckB0y1337/TokenPlayer

Manipulating and Abusing Windows Access Tokens.

C++29048Updated 1 day ago

lateral-movementpentest-toolpost-exploitationtokensuac-bypasswindowswindows-internalswindows-privilege-escalationwindows-security

mxk/windows-secure-group-policy

Windows 11 secure group policy for standalone devices

Batchfile24830Updated 2 days ago

gpogroup-policywindowswindows-11windows-security

fafalone/RunAsTrustedInstaller

Run a program as TrustedInstaller (SYSTEM)

Visual Basic 6.021521Updated 1 week ago

admin-toolssecurity-toolstwinbasicuac-functionalitiesvb6windowswindows-adminwindows-administrationwindows-security

lostzombie/AchillesScript

Disable Microsoft Windows Defender, Security app, Smartscreen, completely without remove and broke Windows image integrity

Batchfile1501Updated 3 hours ago

bypass-antivirusdebloatdebloaterdefenderdisable-windows-defendermicrosoft-defendersecuritytweakingwindowswindows-10windows-11windows-defenderwindows-securitywindows10

ansible-lockdown/Windows-2019-CIS

Automated CIS Benchmark Compliance Remediation for Windows Server 2019 with Ansible

YAML14876Updated 1 month ago

ansibleansible-playbookansible-roleautomationciscis-benchmarkcis-compliancecis-hardeningcis-securitycybersecurityenterprise-hardeninggroup-policyit-compliancesecure-baselinesecure-configurationsystem-hardeningwindows-compliancewindows-securitywindows-server-2019windows-server-hardening

NexusOne23/noid-privacy

Enterprise-Grade Security & Privacy Hardening Tool for Windows 11 25H2

PowerShell12948Updated 1 day ago

attack-surface-reductionautomationcis-benchmarkcompliancecybersecurityenterprise-securityhardeningmicrosoft-defendernoid-privacypowershellprivacyprivacy-toolssecuritysecurity-baselinesystem-hardeningtelemetry-blockerwindows-11windows-11-25h2windows-hardeningwindows-security

0xsh3llf1r3/ColdWer

Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass

C11720Updated 6 days ago

av-bypassbeacon-object-filebofcobalt-strikecredential-dumpingedr-bypassedr-evasionedr-freezelsass-dumpoffensive-securityppl-bypassred-teamwindows-security

ansible-lockdown/Windows-2022-CIS

Automated CIS Benchmark Compliance Remediation for Windows Server 2022 with Ansible

YAML10947Updated 1 week ago

mbcrump/awesome-security

A collection of awesome ethical hacking and security related content!

1049Updated 1 month ago

awesome-listsbugbountydesktop-securityethical-hackinghacking-resourceshacking-toolslinuxmobile-securitypentestingreverse-engineeringsecuritysecurity-toolswindows-security

Karib0u/rustinel

Rust Windows EDR (user-mode, no driver): ETW → Sysmon-style normalization → Sigma/Yara/IOC detection → ECS NDJSON alerts.

Rust9214Updated 7 hours ago

blue-teamdetection-engineeringedrendpoint-detectionetwincident-responsemalware-detectionrustsecurity-toolssiemsigmasysmonthreat-detectionwindows-securityyara

AnonKryptiQuz/I-Espresso

I-Espresso is a tool that enables users to generate Portable Executable (PE) files from batch scripts. Leveraging IExpress, it demonstrates how file extension spoofing can be used to evade detection.

Batchfile8414Updated 2 weeks ago

anonymousbatch-scriptingeducational-toolethical-hackingextension-spoofingfile-obfuscationhackingiexpresspenetration-testingportable-executablesocial-engineeringwindows-security

AnonKryptiQuz/Xploitra

Xploitra is a powerful reverse shell payload generator for educational and security testing. It offers customizable payloads with advanced obfuscation and session management, making it ideal for simulating real-world attack scenarios and assessing system security.

Python7210Updated 1 month ago

anonymouscybersecurityeducational-toolethical-hackinghackingobfuscationpayload-generatorpenetration-testingpythonreverse-shellssession-managementwindows-security

vvswift/Bypass-Protection0x00

EDR & AV Bypass Arsenal— a comprehensive collection of tools, patches, and techniques for evading modern EDR and antivirus defenses.

C5719Updated 2 days ago

0dayantivirus-evasionaptblue-teambypass-protectionbypassmartscreencybersecurityedr-evasionedr-killerelfevasionhookingkernel-driverloadermalware-analysisred-teamreverse-engineeringscriptblockshellcodewindows-security

paulveillard/cybersecurity-windows-exploitation

A collection of awesome software, libraries, learning tutorials, documents and books, awesome resources and cool stuff about ARM and Windows Exploitation.

5110Updated 3 months ago

arm-templatesarm64cybersecurity-search-engineexecutableexploitation-frameworkkernel-methodskernel-modulewindowswindows-exploitationwindows-securityx86x86-kernel

digitaldisarray/Malware-Analysis

:mag: My favorite resources and tools for malware analysis.

4312Updated 1 month ago

educationmalwaremalware-analysismalware-analyzermalware-detectionmalware-researchmalware-samplesreverse-engineeringvirus-samplesvirustotalwindowswindows-security

VirtualAlllocEx/CS-EDR-Enumeration

Cobalt Strike Aggressor Script for identifying security products on Windows hosts — six enumeration methods rated by noise level, from silent in-process BOF to full PowerShell/WMI.

C403Updated 1 day ago

aggressor-scriptbeacon-object-filebofcobalt-strikecobaltstrike-cnaedr-enumerationedr-evasionoffensive-securitypost-exploitationpurple-teamredteamwindows-security

ansible-lockdown/Windows-2019-STIG

Automated STIG Benchmark Compliance Remediation for Windows Server 2019 with Ansible

YAML3920Updated 1 month ago

ansibleansible-playbookansible-roleautomationcybersecurityenterprise-hardeninggpoit-compliancesecure-baselinesecure-configurationstigstig-benchmarkstig-compliancestig-hardeningstig-securitysystem-hardeningwindows-compliancewindows-securitywindows-server-2019windows-server-hardening

ansible-lockdown/Windows-11-CIS

Automated CIS Benchmark Compliance Remediation for Windows 11 Enterprise with Ansible

YAML3515Updated 2 weeks ago

ansibleansible-playbookansible-roleautomationciscis-benchmarkcis-compliancecis-hardeningcis-securitycybersecurityenterprise-hardeningit-compliancesecure-automationsecure-baselinesecure-configurationsystem-hardeningwindows-11-enterprisewindows-11-hardeningwindows-compliancewindows-security

xFaraday/EzScript

Cyberpatriot born Windows hardening script. It serves as a way to get to baseline and can help specialists further secure the machine.

PowerShell3414Updated 4 months ago

ccdccyberpatriotcyberpatriot-scriptsecurity-toolswindowswindows-security

iamShimanto/powershell-execution-policy-helper

PowerShell script helper to manage execution policy for current user — perfect for automation, scripting, and dev environments.

PowerShell310Updated 2 months ago

automationdeveloper-toolsdevopsexecution-policypowershellpowershell-scriptingsysadminwindows-securitywindows-terminal

ansible-lockdown/Windows-2016-CIS

Automated CIS Benchmark Compliance Remediation for Windows Server 2016 with Ansible

YAML2935Updated 1 month ago

Suredials/RUSTVERSARY

🦀 RUSTVERSARY: A comprehensive repository of tools and scripts for malware development practices.

Rust291Updated 1 week ago

cybersecurityenumerationethical-hackingexploitationmalware-developmentpenetration-testingpentestingpost-exploitationprocess-injectionred-teamingrustsecurity-toolswindows-security

ecstatic-nobel/Aisle25

Detect leaks in security event logs.

Python200Updated 9 months ago

cyberdata-leakdfirentropyinfosecpassword-dumpprotected-event-loggingpythonsplunkthreathuntingwindows-security

Daxxtropezz/bloodhound-cheatsheet

A clear and structured cheatsheet designed for BloodHound users. This guide explains what BloodHound does, how to install it from scratch, and how to run common AD enumeration and analysis tasks. Built for beginners and professionals who want a quick reference while mapping Active Directory attack paths.

200Updated 11 hours ago

active-directoryad-attack-pathsad-enumerationbloodhoundblue-teamcheatsheetcybersecurityinfosecneo4jpentestingred-teamsecurity-toolssharphoundwindows-security

Page 1 of 9