IppSec / PowerSiem
☆115Updated 9 months ago
Alternatives and similar repositories for PowerSiem:
Users that are interested in PowerSiem are comparing it to the libraries listed below
- Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.☆158Updated 3 months ago
- ☆174Updated last month
- Identify the attack paths in BloodHound breaking your AD tiering☆313Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- Completely Risky Active-Directory Simulation Hub☆99Updated last year
- Active C&C Detector☆152Updated last year
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Updated 8 months ago
- Windows Malware Investigation Scripts & Docs☆75Updated 2 months ago
- ☆156Updated last year
- Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].☆146Updated last year
- autoNTDS is an automation script designed to simplify the process of dumping and cracking NTDS hashes using secretsdump.py and hashcat☆108Updated last year
- Retired TrustedSec Capabilities☆243Updated last month
- Custom PowerShell module to setup an Active Directory lab environment to practice penetration testing.☆172Updated 3 years ago
- ☆196Updated 2 months ago
- Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04☆109Updated 7 months ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆245Updated last year
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆151Updated 7 months ago
- This repo is where I store my Threat Hunting ideas/content☆86Updated last year
- Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab☆143Updated last year
- Finding all things on-prem Microsoft for password spraying and enumeration.☆250Updated 2 years ago
- A comprehensive workshop aimed to equip participants with an in-depth understanding of modern Command and Control (C2) concepts, focusing…☆98Updated last year
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆201Updated 3 weeks ago
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆158Updated 4 months ago
- Get insights into the actual strength and quality of passwords in Active Directory.☆153Updated 6 months ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆110Updated 5 months ago
- PowerShell tools to help defenders hunt smarter, hunt harder.☆172Updated this week
- ☆72Updated 2 weeks ago
- WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.☆153Updated 2 months ago
- Repository for different Windows DFIR related CMDs, PowerShell CMDlets, etc, plus workshops that I did for different conferences or event…☆77Updated 3 years ago
- Some scripts to abuse kerberos using Powershell☆320Updated last year