Alternatives and similar repositories for OWASSRF

Users that are interested in OWASSRF are comparing it to the libraries listed below

• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆95Updated last year
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆91Updated last year
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆154Updated last year
• 0xe7 / WonkaVision
  ☆83Updated 2 years ago
• MazX0p / ThreatHound
  ☆160Updated last year
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆67Updated 2 years ago
• nettitude / MalSCCM
  ☆248Updated last year
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆176Updated 2 years ago
• AssuranceMaladieSec / AD-description-password-finder
  Retrieve AD accounts description and search for password in it
  ☆83Updated 2 years ago
• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆166Updated 3 weeks ago
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆150Updated this week
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆133Updated 2 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆139Updated 11 months ago
• mertdas / SharpLateral
  Lateral Movement
  ☆124Updated last year
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆153Updated 2 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆91Updated 2 years ago
• LuemmelSec / Custom-BloodHound-Queries
  ☆178Updated 6 months ago
• HernanRodriguez1 / MimikatzFUD
  ☆99Updated 3 years ago
• 1njected / CMLoot
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares
  ☆175Updated 2 years ago
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆276Updated last year
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆108Updated last week
• wietze / Invoke-ArgFuscator
  Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…
  ☆179Updated 2 months ago
• roobixx / EventLogForRedTeams
  Simple PoC from Malicious Payload Injection from Windows Event Log Entry
  ☆27Updated 2 years ago
• synacktiv / ntdissector
  ☆144Updated last week
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆102Updated 10 months ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆122Updated 3 years ago
• werdhaihai / AtlasReaper
  A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.
  ☆259Updated last year
• LaresLLC / SlinkyCat
  Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET querie…
  ☆80Updated last year
• paranoidninja / Cobaltstrike-Detection
  This repo will contain the core detection, only for Cobaltstrike's leaked versions. Non-leaked version detections wont be shared
  ☆89Updated last year