Skip to content
/ PowerShell-Investigation-Toolkit Public

This repository contains a collection of PowerShell scripts and commands designed to assist cybersecurity professionals in conducting log-based threat hunting, digital forensic investigations, and proactive security monitoring within Windows environments.

License

GPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

SaranCoder0/PowerShell-Investigation-Toolkit

BranchesTags

Repository files navigation

PowerShell Scripts and Commands for Investigation

Welcome to the PowerShell-Scripts-and-Commands-for-Investigation repository! This project provides a comprehensive collection of PowerShell commands and scripts designed for threat hunting, forensic investigation, and security analysis.

Features

  • System investigation scripts
  • Persistence & startup analysis
  • Event log and security analysis
  • Network investigation tools
  • Forensic analysis techniques
  • Sysmon & threat hunting queries
  • Log exporting for SIEM solutions (e.g., Splunk)

Usage

Clone the repository using:

git clone https://github.com/SaranCoder0/PowerShell-Scripts-and-Commands-for-Investigation.git

Run PowerShell scripts directly from the command line:

powershell -ExecutionPolicy Bypass -File script.ps1

Contributions

We welcome contributions! Feel free to submit pull requests, report issues, or suggest improvements.

About

This repository contains a collection of PowerShell scripts and commands designed to assist cybersecurity professionals in conducting log-based threat hunting, digital forensic investigations, and proactive security monitoring within Windows environments.

Topics

powershell-script soc security-tools investigation blue-team-tool dfir-tools

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages