Alternatives and similar repositories for OWASSRF

Users that are interested in OWASSRF are comparing it to the libraries listed below

• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆96Updated 3 months ago
• MazX0p / ThreatHound
  ☆160Updated last year
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆94Updated last year
• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆176Updated 5 months ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆107Updated last year
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆156Updated 2 years ago
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆280Updated 2 years ago
• olafhartong / BamboozlEDR
  A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.
  ☆244Updated last month
• CrowdStrike / sccmhound
  A BloodHound collector for Microsoft Configuration Manager
  ☆348Updated 3 months ago
• splunk / ShellSweep
  ShellSweeping the evil.
  ☆180Updated 11 months ago
• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆145Updated 2 months ago
• arosenmund / defcon33_silence_kill_edr
  ☆326Updated 2 months ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆175Updated 2 years ago
• werdhaihai / AtlasReaper
  A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.
  ☆269Updated 2 years ago
• 0xJs / domain_audit
  Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.
  ☆176Updated 3 months ago
• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆184Updated 7 months ago
• Immersive-Labs-Sec / SliverC2-Forensics
  A collection of tools and detections for the Sliver C2 Frameworj
  ☆131Updated 2 years ago
• cbecks2 / edr-artifacts
  This repository is meant to catalog network and host artifacts associated with various EDR products "shell" and response functionalities.
  ☆90Updated last year
• MorDavid / vCenterHound
  Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges
  ☆159Updated 2 months ago
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆157Updated 2 years ago
• LuemmelSec / Custom-BloodHound-Queries
  ☆179Updated 10 months ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆256Updated last year
• nettitude / MalSCCM
  ☆250Updated 2 years ago
• Octoberfest7 / DNS_Tunneling
  DNS Tunneling using powershell to download and execute a payload. Works in CLM.
  ☆229Updated 3 years ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆132Updated last week
• ajm4n / DLLHound
  Find potential DLL Sideloads on your windows computer
  ☆214Updated 9 months ago
• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆123Updated 2 years ago
• LuemmelSec / Client-Checker
  ☆196Updated 4 months ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆336Updated 11 months ago