Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/brandothedev/compromisedetector

A Windows security auditing tool that detects potential signs of system compromise, such as suspicious processes, network connections, registry entries, and rogue administrator accounts.
https://github.com/brandothedev/compromisedetector

automated malware scanner suspicious tool windows

Last synced: 12 months ago
JSON representation

A Windows security auditing tool that detects potential signs of system compromise, such as suspicious processes, network connections, registry entries, and rogue administrator accounts.

Awesome Lists containing this project

README 

          
# 🛡️ Windows Compromise Detection Tool



A Windows security auditing tool that detects potential signs of system compromise, such as suspicious processes, network connections, registry entries, and rogue administrator accounts.



# 🚀 Features



    ✅ Detects suspicious processes running from Temp and AppData.



    🌐 Identifies suspicious network connections (remote IPs, unusual ports).



    🔍 Scans registry autoruns for malware persistence.



    👥 Lists user accounts, highlighting unexpected admin accounts.



    🔧 Detects Windows Defender tampering.



    🛠️ Shows running scheduled tasks and flagged PowerShell scripts.



# ⚙️ Requirements



    Windows OS



    .NET Core 5+ or .NET 6/7/8



    Admin privileges are required for full functionality.



# ⚠️ Disclaimer



    This tool is intended for educational and diagnostic purposes only.

    Use it responsibly. The author is not responsible for any misuse or damages caused by this program.



# 📄 License



This project is licensed under the MIT License – see the LICENSE file for details.