Microsoft SysInternals 安全漏洞

Microsoft SysInternals is a Microsoft company created in 1996 by Mark Russinovich to host his advanced system utilities and technical information. Whether you are an IT professional or a developer, you will find that Sysinternals utilities can help you manage, troubleshoot, and diagnose your...

Microsoft Sysinternals Suite Denial of Service (June 2023)

The Sysinternals Suite installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - A denial of service DoS vulnerability. An attacker can exploit this issue to cause the affected component to deny system or application services...

IRTriage - Incident Response Triage - Windows Evidence Collection For Forensic Analysis

Scripted collection of system information valuable to a Forensic Analyst. IRTriage will automatically "Run As ADMINISTRATOR" in all Windows versions except WinXP. The original source was Triage-ir v0.851 an Autoit script written by Michael Ahrendt. Unfortunately Michael's last changes were posted...

RTA - Framework Designed To Test The Detection Capabilities Against Malicious Tradecraft

RTA provides a framework of scripts designed to allow blue teams to test their detection capabilities against malicious tradecraft, modeled after MITRE ATT&CK. RTA is composed of python scripts that generate evidence of over 50 different ATT&CK tactics, as well as a compiled binary application th...