H4NM / WhoYouCallingLinks
Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.
☆451Updated last week
Alternatives and similar repositories for WhoYouCalling
Users that are interested in WhoYouCalling are comparing it to the libraries listed below
Sorting:
- Nuke It From Orbit - remove AV/EDR with physical access☆270Updated last year
- PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.☆322Updated 8 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆449Updated 2 months ago
- ScriptSentry finds misconfigured and dangerous logon scripts.☆618Updated last year
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆386Updated 3 months ago
- An ADCS honeypot to catch attackers in your internal network.☆319Updated last year
- A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges.☆864Updated 2 months ago
- A GUI and CLI tool for removing bloat from executables☆437Updated 6 months ago
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆295Updated 2 months ago
- Wireshark RDP resources☆219Updated 7 months ago
- Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…☆1,071Updated last week
- ☆273Updated 4 months ago
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆180Updated 7 months ago
- A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities☆694Updated last year
- Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI☆999Updated last week
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆258Updated 2 years ago
- MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.☆333Updated last year
- MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).☆409Updated last year
- Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!☆445Updated last year
- ☆249Updated 7 months ago
- Compiled tools for internal assessments☆366Updated this week
- ☆514Updated 2 years ago
- Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.☆197Updated 2 months ago
- A repository of credential stealer formats☆236Updated 6 months ago
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…☆396Updated 7 months ago
- Assess the security of your Active Directory with few or all privileges.☆336Updated last week
- A security assessment tool for analyzing Active Directory Group Policy Objects (GPOs) to identify misconfigurations and vulnerabilities☆316Updated 9 months ago
- ☆609Updated 2 months ago
- Ludus is a system to build easy to use cyber environments, or "ranges" for testing and development.☆74Updated last year
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆489Updated last week