Alternatives and similar repositories for WonkaVision

Users that are interested in WonkaVision are comparing it to the libraries listed below

• LaresLLC / OffensiveSysAdmin
  A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools
  ☆88Updated last year
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆67Updated 2 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 2 years ago
• secureworks / TokenMan
  ☆100Updated 2 years ago
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆94Updated last year
• roobixx / EventLogForRedTeams
  Simple PoC from Malicious Payload Injection from Windows Event Log Entry
  ☆27Updated 2 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• Mr-B0b / BloodCheck
  BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.
  ☆17Updated 3 years ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆56Updated 2 years ago
• rvrsh3ll / Azure-App-Tools
  Collection of tools to use with Azure Applications
  ☆108Updated last year
• bouj33boy / Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
  Resources Links for the Research Based on Josh Prager and Nico Shyne's
  ☆13Updated 7 months ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆94Updated 10 months ago
• kiwids0220 / deviceCode2WinHello
  A small script that automates Entra ID persistence with Windows Hello For Business key
  ☆57Updated 3 months ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆93Updated 2 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆91Updated 2 years ago
• mgeeky / msi-shenanigans
  Proof of Concept code and samples presenting emerging threat of MSI installer files.
  ☆83Updated 2 years ago
• BCHarrell / redteamcmm
  ☆55Updated last year
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• ustayready / ShredHound
  Small utility to chunk up a large BloodHound JSON file into smaller files for importing.
  ☆94Updated 2 years ago
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆61Updated 2 years ago
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆77Updated last year
• bitsadmin / chophound
  Some scripts to support with importing large datasets into BloodHound
  ☆80Updated last year
• doredry / TokenFinder
  Tool to extract powerful tokens from Office desktop apps memory
  ☆71Updated last year
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆150Updated last year
• SygniaLabs / ScallOps
  ☆54Updated 9 months ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆52Updated last year
• 0xe7 / RoastInTheMiddle
  ☆71Updated last year
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated 2 years ago