cyberstars / tools / deepbluecli
DeepBlueCLI
—Hunt PowerShell attacks in Windows logs.
Voir sur GitHub
PowerShellBSD-3-Clause
PowerShell threat-hunting module that parses Windows event logs for evidence of common attacks: long command lines, encoded commands, password sprays.