Search Results for "squid-log-analyzer"

MemProcFS-Analyzer is a forensic analysis toolset that builds on the MemProcFS virtual filesystem to make volatile memory artefacts easier to browse and interpret. By exposing process memory, kernel objects, and derived artifacts as regular files, the framework lets analysts use familiar filesystem operations and standard tools (editors, grep, diff) to explore memory snapshots.

A replica of the logrotate utility, except this also runs on Windows systems. Log-Rotate is an independent port of logrotate. It's made to work exactly the same way as the original logrotate, except it works in Powershell and especially Windows.

Winget-AutoUpdate provides automation around Microsoft’s winget package manager to keep installed applications current without manual intervention. It typically wraps winget upgrade invocations into scheduled tasks, CI jobs, or simple scripts that can run on developer workstations and servers to apply available updates in a controlled way. Implementations often add logging, selective filtering (so only safe or allowed packages are updated), and dry-run reporting so admins can vet changes...

...The repository is organized into focused chapters — for example: Password Spray, Consent Grant, Service Principals in Azure DevOps, Entra Connect Sync Service Account, Replay of Primary Refresh Token (PRT), Entra ID Security Config Analyzer, and Adversary-in-the-Middle — each written to explain the attack, show detection approaches, and recommend mitigation steps. For each scenario the playbook describes the attack flow, maps the techniques to the MITRE ATT&CK framework, and explains how to leverage Microsoft’s security stack (Microsoft Defender XDR, Microsoft Sentinel, Azure Entra ID Connect, and Defender for Cloud) to detect and respond.

Scoop (un)installer is the official installer and uninstaller script system for Scoop, designed to make Scoop setup reliable, configurable, and repeatable across different Windows environments. Instead of being “just a one-liner,” it supports a full parameterized workflow where you can choose custom install directories, set global app locations, and control how networking is handled during installation. It is meant to run from PowerShell with appropriate execution policy and language mode,...

Microsoft Defender for Cloud (the community repository) is a centralized collection of programmatic automations, policy definitions, remediation scripts, and visualization workbooks designed to help organizations manage and operationalize Microsoft Defender for Cloud at scale. It packages ready-to-use Azure Policy definitions, Logic App templates, PowerShell automation, remediation actions, and custom workbooks so teams can deploy detections, enforce security posture, and automate responses...

This application connects to the tranmission web client using the RPC interface, it allows the user to set the inital download folder for the torrents for sorting into their own folders based on the type of file it is. it also allows scheduling of the cleaning process eithe daily or weekly at a time set by you in the install process. you supply your username and password for the RPC web interface whohc is encrypted by the application and saved to the disk, The application checks if the torrent is completed, finished seeding and the sorts the files in to correct folder e.g a video into the media folder, MP3 on music folder etc. On windows there is a full shortcuts to reset the RPC credentails, run a manual cleanup, uninstall and also view log file. Application for both macOS and windows have undergone extensive testing before being released.

sysmon-modular is a community-driven repository that provides a modular, production-ready set of Sysmon configuration modules designed to be easily composed and tuned for different environments. The project organizes detection logic into per-event modules (for example, process creation, file create, network connection, registry events, image load, and many more) so operators can pick and choose which rules to enable without editing a monolithic XML by hand. It includes pre-generated...

Active-Directory-Exploitation-Cheat-Sheet is a comprehensive, community-curated cheat sheet that collects practical enumeration commands, attack techniques, and quick references for attacking and auditing Windows Active Directory environments. The repository is organized as a stepwise kill-chain: recon, domain enumeration, local privilege escalation, user hunting, BloodHound guidance, lateral movement, persistence, domain-admin takeover, cross-trust attacks, data exfiltration, and a toolbox...