Alternatives and similar repositories for AD-control-paths

Users that are interested in AD-control-paths are comparing it to the libraries listed below

• ANSSI-FR / ADTimeline
  Timeline of Active Directory changes with replication metadata
  ☆522Updated 10 months ago
• mattifestation / CimSweep
  CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across al…
  ☆659Updated 6 years ago
• cyberark / ACLight
  A script for advanced discovery of Privileged Accounts - includes Shadow Admins
  ☆822Updated 6 years ago
• CredDefense / CredDefense
  Credential and Red Teaming Defense for Windows Environments
  ☆330Updated last year
• outflanknl / Invoke-ADLabDeployer
  Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.
  ☆492Updated 6 years ago
• ion-storm / sysmon-config
  Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into …
  ☆818Updated 2 years ago
• dionach / NtdsAudit
  An Active Directory audit utility
  ☆429Updated 2 years ago
• utsecnet / PAW
  ☆319Updated 6 years ago
• nsacyber / Event-Forwarding-Guidance
  Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…
  ☆881Updated 5 years ago
• BloodHoundAD / BloodHound-Tools
  Miscellaneous tools for BloodHound
  ☆407Updated last year
• WiredPulse / PoSh-R2
  PowerShell - Rapid Response... For the incident responder in you!
  ☆305Updated 6 years ago
• palantir / windows-event-forwarding
  A repository for using windows event forwarding for incident detection and response
  ☆1,296Updated 5 months ago
• miriamxyra / EventList
  EventList
  ☆378Updated 4 years ago
• danielbohannon / Revoke-Obfuscation
  PowerShell Obfuscation Detection Framework
  ☆749Updated 2 years ago
• darkoperator / Posh-SecMod
  PowerShell Module with Security cmdlets for security work
  ☆448Updated 5 years ago
• l0ss / Grouper2
  Find vulnerabilities in AD Group Policy
  ☆641Updated 3 years ago
• l0ss / Grouper
  A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2 instead!)
  ☆737Updated 7 years ago
• PowerShellMafia / PowerSCCM
  PowerSCCM - PowerShell module to interact with SCCM deployments
  ☆372Updated 4 years ago
• MHaggis / sysmon-dfir
  Sources, configuration and how to detect evil things utilizing Microsoft Sysmon.
  ☆937Updated 2 years ago
• ubeeri / Invoke-UserSimulator
  Simulates common user behaviour on local and remote Windows hosts.
  ☆281Updated 7 years ago
• gfoss / PSRecon
  PSRecon gathers data from a remote Windows host using PowerShell (v2 or later), organizes the data into folders, hashes all extracted da…
  ☆491Updated 8 years ago
• A-mIn3 / WINspect
  Powershell-based Windows Security Auditing Toolbox
  ☆573Updated 7 years ago
• NetSPI / PowerShell
  NetSPI PowerShell Scripts
  ☆342Updated last year
• jephthai / OpenPasswordFilter
  An open source custom password filter DLL and userspace service to better protect / control Active Directory domain passwords.
  ☆402Updated last year
• clr2of8 / DPAT
  Domain Password Audit Tool for Pentesters
  ☆1,022Updated last month
• JPCERTCC / ToolAnalysisResultSheet
  Tool Analysis Result Sheet
  ☆356Updated 8 years ago
• GoFetchAD / GoFetch
  GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.
  ☆634Updated 8 years ago
• cyberark / zBang
  zBang is a risk assessment tool that detects potential privileged account threats
  ☆343Updated 3 years ago
• Infocyte / PSHunt
  Powershell Threat Hunting Module
  ☆288Updated 9 years ago
• davehull / Kansa
  A Powershell incident response framework
  ☆1,637Updated 3 years ago