Alternatives and similar repositories for OWASSRF

Users that are interested in OWASSRF are comparing it to the libraries listed below

• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆98Updated 2 weeks ago
• MazX0p / ThreatHound
  ☆160Updated 2 years ago
• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆178Updated 8 months ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆96Updated 2 years ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆109Updated last year
• werdhaihai / AtlasReaper
  A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.
  ☆270Updated 2 years ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆155Updated 2 years ago
• nasbench / Misc-Research
  A collection of tools, scripts and personal research
  ☆155Updated last month
• QueenSquishy / plague
  Default Detections for EDR
  ☆97Updated last year
• LuemmelSec / Custom-BloodHound-Queries
  ☆184Updated last year
• Octoberfest7 / DNS_Tunneling
  DNS Tunneling using powershell to download and execute a payload. Works in CLM.
  ☆231Updated 3 years ago
• nettitude / MalSCCM
  ☆252Updated 2 years ago
• LOLESXi-Project / LOLESXi
  LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…
  ☆143Updated last month
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆155Updated 2 years ago
• ACE-Responder / RogueSliver
  A suite of tools to disrupt campaigns using the Sliver C2 framework.
  ☆282Updated 2 years ago
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆70Updated 3 years ago
• 1mm0rt41PC / AutoHarden
  Hardening script for Windows (Domain mode or without domain)
  ☆15Updated 4 months ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆178Updated 2 years ago
• trustedsec / specula
  ☆229Updated 7 months ago
• sadshade / veeam-creds
  Collection of scripts to retrieve stored passwords from Veeam Backup
  ☆144Updated 7 months ago
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆166Updated 5 months ago
• LETHAL-FORENSICS / Collect-MemoryDump
  Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
  ☆252Updated 3 months ago
• CrowdStrike / sccmhound
  A BloodHound collector for Microsoft Configuration Manager
  ☆362Updated 6 months ago
• mertdas / SharpLateral
  Lateral Movement
  ☆125Updated 2 years ago
• garrettfoster13 / aced
  ☆197Updated 5 months ago
• 0xBallpoint / LOAD
  Lord Of Active Directory - automatic vulnerable active directory on AWS
  ☆148Updated 2 years ago
• JPG0mez / ADCSync
  Use ESC1 to perform a makeshift DCSync and dump hashes
  ☆210Updated 2 years ago
• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆191Updated 10 months ago
• 0xe7 / WonkaVision
  ☆86Updated 3 years ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆356Updated last month