Alternatives and similar repositories for SysmonConfigPusher2

Users that are interested in SysmonConfigPusher2 are comparing it to the libraries listed below

• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆116Updated 5 months ago
• techBrandon / CAPs
  Scripts to enumerate and report on Entra Conditional Access
  ☆41Updated 4 months ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆31Updated last year
• QueenSquishy / Zombie
  General Content
  ☆25Updated last month
• thalpius / Microsoft-Azure-AD-Conditional-Access-Validator
  This script validates the most common Conditional Access policies in Microsoft 365.
  ☆10Updated last year
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated 2 years ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆98Updated 3 years ago
• NotSoSecure / NoPrompt
  ☆100Updated 5 months ago
• 0xe7 / WonkaVision
  ☆86Updated 3 years ago
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆98Updated 3 weeks ago
• improsec / 2Cloudz
  ☆26Updated 3 years ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆42Updated 2 years ago
• Neo23x0 / Talks
  Slides of my public talks
  ☆56Updated 2 years ago
• QueenSquishy / plague
  Default Detections for EDR
  ☆97Updated last year
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆90Updated 4 years ago
• MHaggis / SequelEyes
  SQL, IIS, Oh My...
  ☆22Updated 11 months ago
• DefensiveOrigins / DO-LAB
  ☆50Updated last week
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆53Updated 2 years ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• secureworks / primary-refresh-token-viewer
  ☆11Updated 3 years ago
• HackmichNet / AzTokenFinder
  ☆107Updated 3 years ago
• Cyb3rWard0g / HF-Agents-Course-Notes
  My Notes from Hugging Face AI Agents Course
  ☆19Updated 11 months ago
• secgroundzero / KQL_Reference_Manual
  ☆43Updated 4 years ago
• rootsecdev / Presentations
  Presentations from Conferences
  ☆30Updated last year
• msdirtbag / azurevelo
  Velociraptor Server hosted in Azure App Service
  ☆59Updated 7 months ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆26Updated 2 years ago
• lkarlslund / azureimposter
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆26Updated 3 years ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆84Updated last year
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 5 years ago
• sleeptok3n / RoleCrawl
  ☆21Updated 4 months ago