Alternatives and similar repositories for WonkaVision

Users that are interested in WonkaVision are comparing it to the libraries listed below

• LaresLLC / OffensiveSysAdmin
  A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools
  ☆88Updated 2 years ago
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆57Updated 2 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆91Updated 2 years ago
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆67Updated 2 years ago
• daddycocoaman / azbelt
  AAD related enumeration in Nim
  ☆131Updated last year
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 3 years ago
• rvrsh3ll / Azure-App-Tools
  Collection of tools to use with Azure Applications
  ☆109Updated last year
• secureworks / TokenMan
  ☆102Updated 2 years ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆94Updated last year
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 3 years ago
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆95Updated last week
• myexploit / living_off_the_land
  ☆44Updated last year
• outflanknl / Training-MSOfficeOffensiveTradecraft
  Info related to the Outflank training: Microsoft Office Offensive Tradecraft
  ☆52Updated last year
• 0xe7 / RoastInTheMiddle
  ☆72Updated last month
• Helixo32 / SimpleEDR
  Simple EDR that injects a DLL into a process to place a hook on specific Windows API
  ☆94Updated last year
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 2 years ago
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆64Updated 3 years ago
• bitsadmin / chophound
  Some scripts to support with importing large datasets into BloodHound
  ☆80Updated last year
• 0xe7 / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆42Updated 4 months ago
• sidaf / moonshine
  ☆69Updated last year
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆17Updated 2 months ago
• ustayready / ShredHound
  Small utility to chunk up a large BloodHound JSON file into smaller files for importing.
  ☆94Updated 2 years ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆70Updated 5 months ago
• kiwids0220 / deviceCode2WinHello
  A small script that automates Entra ID persistence with Windows Hello For Business key
  ☆60Updated 5 months ago
• MalwareTech / FollinaExtractor
  Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files
  ☆31Updated 3 years ago
• roobixx / EventLogForRedTeams
  Simple PoC from Malicious Payload Injection from Windows Event Log Entry
  ☆28Updated 2 years ago
• Tylous / Slides
  ☆39Updated last year
• njcve / inflate.py
  Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
  ☆120Updated 3 years ago
• secureworks / BAADTokenBroker
  ☆103Updated last month