Microsoft Sysinternals Suite Denial of Service (June 2023)

The Sysinternals Suite installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability: - A denial of service DoS vulnerability. An attacker can exploit this issue to cause the affected component to deny system or application services...

Microsoft SysInternals 安全漏洞

Microsoft SysInternals is a Microsoft company created in 1996 by Mark Russinovich to host his advanced system utilities and technical information. Whether you are an IT professional or a developer, you will find that Sysinternals utilities can help you manage, troubleshoot, and diagnose your...

IRTriage - Incident Response Triage - Windows Evidence Collection For Forensic Analysis

Scripted collection of system information valuable to a Forensic Analyst. IRTriage will automatically "Run As ADMINISTRATOR" in all Windows versions except WinXP. The original source was Triage-ir v0.851 an Autoit script written by Michael Ahrendt. Unfortunately Michael's last changes were posted...

RTA - Framework Designed To Test The Detection Capabilities Against Malicious Tradecraft

RTA provides a framework of scripts designed to allow blue teams to test their detection capabilities against malicious tradecraft, modeled after MITRE ATT&CK. RTA is composed of python scripts that generate evidence of over 50 different ATT&CK tactics, as well as a compiled binary application th...