Alternatives and similar repositories for ORADAZ

Users that are interested in ORADAZ are comparing it to the libraries listed below

• ANSSI-FR / guide-journalisation-microsoft
  Guide journalisation Microsoft
  ☆69Updated last year
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆92Updated last year
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆146Updated this week
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆255Updated last year
• mvelazc0 / msInvader
  M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…
  ☆312Updated 2 months ago
• tsale / EDR-Telemetry-Website
  ☆74Updated this week
• Elymaro / PassTester
  Identify the accounts most vulnerable to dictionary attacks
  ☆121Updated 6 months ago
• techspence / ADeleginator
  A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory
  ☆273Updated last year
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆122Updated 2 years ago
• SpecterOps / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆240Updated 2 months ago
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆78Updated 5 months ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆66Updated 2 years ago
• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆198Updated last week
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆106Updated last year
• youhgo / DOPP
  DFIR ORC PARSER PROJECT
  ☆24Updated last month
• techspence / AppLockerInspector
  Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.
  ☆112Updated last month
• JumpsecLabs / TokenSmith
  TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …
  ☆325Updated 8 months ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆155Updated 11 months ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆178Updated 4 months ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆159Updated 6 months ago
• CyberCX-STA / PurpleOps
  An open-source self-hosted purple team management web application.
  ☆290Updated last month
• reprise99 / 4688-sysmon
  ☆61Updated 2 years ago
• 0xJs / domain_audit
  Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.
  ☆174Updated 3 months ago
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆115Updated last year
• LivingInSyn / RMML
  A list of RMMs designed to be used in automation to build alerts
  ☆113Updated 6 months ago
• msdirtbag / azurevelo
  Velociraptor Server hosted in Azure App Service
  ☆58Updated 4 months ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆99Updated 3 years ago
• Harden365 / Harden365
  Protect your data in minutes !
  ☆121Updated 11 months ago
• 0x706972686f / RMM-Catalogue
  ☆102Updated 3 months ago
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆186Updated last week