Alternatives and similar repositories for WhoYouCalling

Users that are interested in WhoYouCalling are comparing it to the libraries listed below

• joeavanzato / Trawler
  PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.
  ☆316Updated last month
• lkarlslund / nifo
  Nuke It From Orbit - remove AV/EDR with physical access
  ☆259Updated 6 months ago
• MHaggis / PowerShell-Hunter
  PowerShell tools to help defenders hunt smarter, hunt harder.
  ☆401Updated 2 months ago
• techspence / ScriptSentry
  ScriptSentry finds misconfigured and dangerous logon scripts.
  ☆543Updated 6 months ago
• Yamato-Security / EnableWindowsLogSettings
  Documentation and scripts to properly enable Windows event logs.
  ☆618Updated last year
• awakecoding / wireshark-rdp
  Wireshark RDP resources
  ☆213Updated 3 weeks ago
• magicsword-io / LOLRMM
  LotL RMM
  ☆208Updated last week
• p0dalirius / ExtractBitlockerKeys
  A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.
  ☆373Updated 4 months ago
• CompassSecurity / EntraFalcon
  A lightweight PowerShell tool for assessing the security posture of Microsoft Entra ID environments. It helps identify privileged object…
  ☆237Updated 2 weeks ago
• LETHAL-FORENSICS / Microsoft-Analyzer-Suite
  A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
  ☆490Updated 2 weeks ago
• RedByte1337 / GraphSpy
  Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
  ☆747Updated last month
• activecm / rita
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆310Updated last week
• jonny-jhnson / JonMon
  ☆232Updated 2 weeks ago
• Squiblydoo / debloat
  A GUI and CLI tool for removing bloat from executables
  ☆406Updated 2 months ago
• techspence / ADeleginator
  A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory
  ☆232Updated 9 months ago
• trustedsec / The_Shelf
  Retired TrustedSec Capabilities
  ☆247Updated 7 months ago
• mandiant / VM-Packages
  Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
  ☆184Updated last week
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆171Updated 3 weeks ago
• LETHAL-FORENSICS / MemProcFS-Analyzer
  MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
  ☆635Updated this week
• ExaTrack / Kdrill
  Python tool to check rootkits in Windows kernel
  ☆197Updated 3 months ago
• jakehildreth / Locksmith
  A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.
  ☆1,124Updated 3 weeks ago
• Psmths / windows-forensic-artifacts
  Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!
  ☆361Updated 10 months ago
• IppSec / PowerSiem
  ☆121Updated last year
• Bert-JanP / Incident-Response-Powershell
  PowerShell Digital Forensics & Incident Response Scripts.
  ☆625Updated 3 weeks ago
• MaLDAPtive / Invoke-Maldaptive
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆294Updated 10 months ago
• subat0mik / Misconfiguration-Manager
  Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…
  ☆935Updated last week
• secureworks / pytune
  ☆221Updated 2 weeks ago
• gtworek / VolatileDataCollector
  ☆201Updated 7 months ago
• srlabs / Certiception
  An ADCS honeypot to catch attackers in your internal network.
  ☆289Updated 11 months ago
• vectra-ai-research / MAAD-AF
  MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
  ☆400Updated 8 months ago