Alternatives and similar repositories for ORADAZ

Users that are interested in ORADAZ are comparing it to the libraries listed below

• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆92Updated last year
• ANSSI-FR / guide-journalisation-microsoft
  Guide journalisation Microsoft
  ☆69Updated last year
• tsale / EDR-Telemetry-Website
  ☆74Updated last month
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆114Updated last year
• mvelazc0 / msInvader
  M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…
  ☆305Updated last week
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆254Updated last year
• techspence / ADeleginator
  A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory
  ☆235Updated 10 months ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆105Updated 11 months ago
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆154Updated 4 months ago
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆77Updated 3 months ago
• JumpsecLabs / TokenSmith
  TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …
  ☆313Updated 6 months ago
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆122Updated 2 years ago
• mgreen27 / DetectRaptor
  A repository to share publicly available Velociraptor detection content
  ☆186Updated this week
• securityjoes / Crowdstrike-Deploy
  The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆24Updated last month
• youhgo / DOPP
  DFIR ORC PARSER PROJECT
  ☆25Updated 5 months ago
• reprise99 / 4688-sysmon
  ☆61Updated 2 years ago
• SpecterOps / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆235Updated 2 weeks ago
• msdirtbag / azurevelo
  Velociraptor Server hosted in Azure App Service
  ☆56Updated 2 months ago
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆114Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆82Updated last year
• BushidoUK / Ransomware-Vulnerability-Matrix
  A collection of CVEs weaponized by ransomware operators
  ☆120Updated 2 months ago
• 0x706972686f / RMM-Catalogue
  ☆101Updated last month
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆93Updated last year
• LivingInSyn / RMML
  A list of RMMs designed to be used in automation to build alerts
  ☆112Updated 3 months ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆153Updated 9 months ago
• secureworks / pytune
  ☆230Updated 3 weeks ago
• Elymaro / PassTester
  Identify the accounts most vulnerable to dictionary attacks
  ☆121Updated 4 months ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆127Updated 6 months ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆66Updated last year
• jakehildreth / BlueTuxedo
  A tiny tool built to find and fix common misconfigurations in Active Directory-integrated DNS
  ☆121Updated 6 months ago