We have hosted the application persistencesniper in order to run this application in our online workstations with Wine or directly.
Quick description about persistencesniper:
PersistenceSniper is a digitally signed PowerShell module aimed at blue teams and incident responders for automated detection of persistence mechanisms on Windows systems. It implements detection logic for techniques listed in MITRE ATT&CK (e.g. registry run keys, scheduled tasks, service modifications) and is regularly updated with new detection paths.Features:
- Detects persistence across run keys, scheduled tasks, services, and WMI
- Aligns with MITRE ATT&CK persistence techniques
- Digitally signed and published via PowerShell Gallery
- Lightweight module (~3000 lines), no external dependencies
- Regular releases adding detection capabilities
- Suitable for automation and integration into SOAR workflows
Programming Language: PowerShell.
Categories:
©2024. Winfy. All Rights Reserved.
By OD Group OU – Registry code: 1609791 -VAT number: EE102345621.