Operator On The Wire
Join
← Back to Knowledge Base
BLUE TEAM / DFI / ARTEFACT / WINDOWS / REGISTRY / RegRipper

Defense & Security

PluginHiveWhat it gives
defenderSOFTWAREDefender config
disableeventlogSYSTEMEvent log tampering
disableuserassistNTUSERUserAssist disabled
credSYSTEMWDigest
uacSOFTWAREUAC config
uacbypassSOFTWARE / USRCLASSBypass traces
filelessALLFileless indicators
findexesALLMZ blobs in registry