ANSSI-FR / AD-permissions
Active Directory permissions (ACL/ACE) auditing tools
☆148Updated 7 years ago
Alternatives and similar repositories for AD-permissions:
Users that are interested in AD-permissions are comparing it to the libraries listed below
- Active Directory Group Policy analyzer☆98Updated 10 years ago
- PowerShell script to find 'vulnerable' security-related GPOs that should be hardended☆196Updated 6 years ago
- Smb Scanner from PingCastle☆123Updated 5 years ago
- Open source Active Directory security audit framework.☆133Updated 7 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆182Updated 5 years ago
- IR-Tools - PowerShell tools for IR☆128Updated 7 years ago
- PowerShell No Agent Hunting☆109Updated 6 years ago
- Conveigh is a Windows PowerShell LLMNR/NBNS spoofer detection tool☆97Updated 8 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆168Updated last year
- Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …☆76Updated 7 years ago
- Lists of sources and utilities utilized to hunt, detect and prevent evildoers.☆162Updated 6 years ago
- gpocheck☆30Updated 5 months ago
- Audix is a PowerShell tool to quickly configure the Windows Event Audit Policies for security monitoring☆117Updated 5 years ago
- ☆97Updated 8 years ago
- Misc. PowerShell scripts☆115Updated 8 years ago
- Sysmon configuration☆66Updated 6 years ago
- Active Directory enumeration from non-domain system.☆118Updated 8 years ago
- A command line tool for creating malicious outlook rules☆160Updated 6 years ago
- Credit to Helge Klein - https://helgeklein.com/blog/2015/02/creating-realistic-test-user-accounts-active-directory/☆69Updated 6 years ago
- Dashboarding and Tooling front-end for PowerShell Empire using PowerShell Universal Dashboard☆104Updated 5 years ago
- The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.☆93Updated 7 years ago
- A powershell script for creating a Windows honeyport.☆87Updated 9 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆103Updated 7 years ago
- Simulating Adversary Operations☆92Updated 6 years ago
- ☆76Updated 6 years ago
- Sysmon Tools for PowerShell☆230Updated 6 years ago
- Monitors for DCSYNC and DCSHADOW attacks and create custom Windows Events for these events.☆138Updated 6 years ago
- Powershell Empire Persistence finder☆117Updated 8 years ago
- Currently not updated for WMIEvent module...☆261Updated 8 years ago
- ☆38Updated 9 years ago