Alternatives and similar repositories for WhoYouCalling

Users that are interested in WhoYouCalling are comparing it to the libraries listed below

• joeavanzato / Trawler
  PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.
  ☆324Updated 9 months ago
• lkarlslund / nifo
  Nuke It From Orbit - remove AV/EDR with physical access
  ☆271Updated last year
• persistence-info / persistence-info.github.io
  ☆520Updated 2 years ago
• MHaggis / PowerShell-Hunter
  PowerShell tools to help defenders hunt smarter, hunt harder.
  ☆455Updated 3 months ago
• techspence / ScriptSentry
  ScriptSentry finds misconfigured and dangerous logon scripts.
  ☆622Updated last year
• srlabs / Certiception
  An ADCS honeypot to catch attackers in your internal network.
  ☆324Updated last year
• Squiblydoo / debloat
  A GUI and CLI tool for removing bloat from executables
  ☆441Updated 7 months ago
• p0dalirius / ExtractBitlockerKeys
  A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.
  ☆387Updated 3 weeks ago
• techspence / ADeleginator
  A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory
  ☆310Updated 3 months ago
• awakecoding / wireshark-rdp
  Wireshark RDP resources
  ☆221Updated 8 months ago
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆258Updated 2 years ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆180Updated 8 months ago
• secureworks / pytune
  ☆280Updated 5 months ago
• Psmths / windows-forensic-artifacts
  Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!
  ☆458Updated last year
• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆197Updated 3 months ago
• subat0mik / Misconfiguration-Manager
  Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…
  ☆1,086Updated last week
• jonny-jhnson / JonMon
  ☆250Updated 8 months ago
• Syslifters / offsec-tools
  Compiled tools for internal assessments
  ☆370Updated this week
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆105Updated 2 months ago
• MalBeacon / what-is-this-stealer
  A repository of credential stealer formats
  ☆243Updated 8 months ago
• vu-ls / Crassus
  ☆615Updated this week
• mandiant / VM-Packages
  Chocolatey packages supporting the analysis environment projects FLARE-VM & Commando VM.
  ☆215Updated this week
• MaLDAPtive / Invoke-Maldaptive
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆336Updated last year
• cyberark / PipeViewer
  A tool that shows detailed information about named pipes in Windows
  ☆732Updated last year
• RedByte1337 / GraphSpy
  Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
  ☆1,028Updated last month
• gtworek / VolatileDataCollector
  ☆214Updated 2 months ago
• cisagov / Ludus
  Ludus is a system to build easy to use cyber environments, or "ranges" for testing and development.
  ☆75Updated last year
• CobblePot59 / ADcheck
  Assess the security of your Active Directory with few or all privileges.
  ☆341Updated last week
• hackertarget / pcap-did-what
  Analyze pcaps with Zeek and a Grafana Dashboard
  ☆190Updated last year
• splunk / DECEIVE
  DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!
  ☆274Updated 7 months ago