Alternatives and similar repositories for WonkaVision

Users that are interested in WonkaVision are comparing it to the libraries listed below

• QueenSquishy / plague
  Default Detections for EDR
  ☆97Updated last year
• LaresLLC / OffensiveSysAdmin
  A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools
  ☆88Updated 2 years ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆58Updated 3 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆93Updated 2 years ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆95Updated last year
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 3 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 3 years ago
• daddycocoaman / azbelt
  AAD related enumeration in Nim
  ☆133Updated 2 years ago
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆69Updated 2 years ago
• secureworks / TokenMan
  ☆105Updated 3 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 3 years ago
• myexploit / living_off_the_land
  ☆44Updated last year
• roobixx / EventLogForRedTeams
  Simple PoC from Malicious Payload Injection from Windows Event Log Entry
  ☆28Updated 3 years ago
• 0xe7 / RoastInTheMiddle
  ☆74Updated 6 months ago
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆66Updated 3 years ago
• 0xe7 / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆42Updated 9 months ago
• ASOT-LABS / TeamsBreaker
  ☆47Updated last year
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆73Updated 10 months ago
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆19Updated 7 months ago
• Tylous / Slides
  ☆40Updated last year
• outflanknl / Training-MSOfficeOffensiveTradecraft
  Info related to the Outflank training: Microsoft Office Offensive Tradecraft
  ☆52Updated last year
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆97Updated 2 months ago
• rvrsh3ll / Azure-App-Tools
  Collection of tools to use with Azure Applications
  ☆112Updated 2 years ago
• 4ndr34z / prenum
  ☆29Updated 2 years ago
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 5 years ago
• spyr0-sec / AutomatedBadLab
  PowerShell scripts to create sandboxed or vulnerable environments using HyperV and AutomatedLab
  ☆91Updated 5 months ago
• Helixo32 / SimpleEDR
  Simple EDR that injects a DLL into a process to place a hook on specific Windows API
  ☆96Updated 2 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• bitsadmin / chophound
  Some scripts to support with importing large datasets into BloodHound
  ☆81Updated 2 years ago
• sidaf / moonshine
  ☆70Updated 2 years ago