Alternatives and similar repositories for Office-365-Extractor

Users that are interested in Office-365-Extractor are comparing it to the libraries listed below

• p3nt4 / MagicCopy

  View on GitHub
  Powershell script to exfiltrate large files quickly and securely
  ☆125May 4, 2022Updated 3 years ago
• Cybereason / Invoke-WMILM

  View on GitHub
  ☆230May 10, 2018Updated 7 years ago
• mgreen27 / Invoke-LiveResponse

  View on GitHub
  Invoke-LiveResponse
  ☆150Feb 22, 2022Updated 3 years ago
• leeberg / BlueHive

  View on GitHub
  PowerShell based Active Directory Honey User Account Management with Universal Dashboards
  ☆141Jun 26, 2019Updated 6 years ago
• xFreed0m / KatzKatz

  View on GitHub
  Python3 script to parse txt files containing Mimikatz output
  ☆99Jun 19, 2020Updated 5 years ago
• beahunt3r / Windows-Hunting

  View on GitHub
  ☆349Mar 19, 2021Updated 4 years ago
• PwC-IR / Office-365-Extractor

  View on GitHub
  The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
  ☆266Feb 3, 2022Updated 4 years ago
• dafthack / Check-LocalAdminHash

  View on GitHub
  Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password hash to…
  ☆180Sep 11, 2023Updated 2 years ago
• r4wd3r / RID-Hijacking

  View on GitHub
  Windows RID Hijacking persistence technique
  ☆178Nov 20, 2024Updated last year
• ThunderGunExpress / Reflective_Schtasks

  View on GitHub
  ☆54Aug 13, 2018Updated 7 years ago
• GoFetchAD / GoFetch

  View on GitHub
  GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.
  ☆634Jun 20, 2017Updated 8 years ago
• mkorman90 / sysmon-config-bypass-finder

  View on GitHub
  Detect possible sysmon logging bypasses given a specific configuration
  ☆111Dec 26, 2018Updated 7 years ago
• mvelazc0 / Oriana

  View on GitHub
  Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…
  ☆177Jun 10, 2021Updated 4 years ago
• panagioto / SharpExchangePriv

  View on GitHub
  A C# implementation of PrivExchange by @_dirkjan.
  ☆155Mar 15, 2019Updated 6 years ago
• two06 / AMSI_Handler

  View on GitHub
  Automate AV evasion by calling AMSI
  ☆88May 31, 2023Updated 2 years ago
• sorasuzukidev / ethereum-bnb-mev-bot

  View on GitHub
  🔵 Ethereum and BNB (BSC) Mev bot - Arbitrage
  ☆359Updated this week
• Arno0x / TCPRelayInjecter2

  View on GitHub
  Tool for injecting a "TCP Relay" managed assembly into an unmanaged process
  ☆65May 24, 2019Updated 6 years ago
• Coalfire-Research / Vampire

  View on GitHub
  Vampire is an aggressor script which integrates with BloodHound to mark nodes as owned.
  ☆79Apr 6, 2021Updated 4 years ago
• breakid / RedReaper

  View on GitHub
  This tool is designed to simplify and automate the extraction and organization of useful data from Cobalt Strike logs.
  ☆18Apr 24, 2019Updated 6 years ago
• mdsecactivebreach / o365-attack-toolkit

  View on GitHub
  A toolkit to attack Office365
  ☆1,114Nov 6, 2020Updated 5 years ago
• ANSSI-FR / AD-permissions

  View on GitHub
  Active Directory permissions (ACL/ACE) auditing tools
  ☆148Jun 15, 2017Updated 8 years ago
• jnqpblc / Misc-CSharp

  View on GitHub
  Miscellaneous C-Sharp projects for red team activities
  ☆24Aug 12, 2022Updated 3 years ago
• brimorlabs / KStrike

  View on GitHub
  Stand-alone parser for User Access Logging from Server 2012 and newer systems
  ☆78Jan 9, 2024Updated 2 years ago
• G0ldenGunSec / PowerPriv

  View on GitHub
  A Powershell implementation of PrivExchange designed to run under the current user's context
  ☆125Jan 31, 2019Updated 7 years ago
• hausec / ADAPE-Script

  View on GitHub
  Active Directory Assessment and Privilege Escalation Script
  ☆1,130Dec 7, 2022Updated 3 years ago
• invictus-ir / Blue-team-app-Office-365-and-Azure

  View on GitHub
  ☆73Oct 21, 2024Updated last year
• netwrix / poshkatz

  View on GitHub
  PowerShell module for Mimikatz
  ☆215Dec 28, 2019Updated 6 years ago
• DissectMalware / ClipboardWatcher

  View on GitHub
  Monitor the textual data pasted into Windows clipboard
  ☆29Nov 4, 2018Updated 7 years ago
• outflanknl / Excel4-DCOM

  View on GitHub
  PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)
  ☆328Mar 26, 2019Updated 6 years ago
• SadProcessor / Cheats

  View on GitHub
  Various Cheat Sheets
  ☆183Jun 24, 2021Updated 4 years ago
• palantir / windows-event-forwarding

  View on GitHub
  A repository for using windows event forwarding for incident detection and response
  ☆1,296Sep 8, 2025Updated 5 months ago
• nullbind / Other-Projects

  View on GitHub
  This project is just a dumping ground for random scripts I've developed.
  ☆139Aug 14, 2024Updated last year
• l0ss / Grouper

  View on GitHub
  A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2 instead!)
  ☆736Feb 5, 2019Updated 7 years ago
• xFreed0m / RDPassSpray

  View on GitHub
  Python3 tool to perform password spraying using RDP
  ☆667Aug 17, 2023Updated 2 years ago
• RedSiege / WMImplant

  View on GitHub
  This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …
  ☆840Jun 25, 2024Updated last year
• OneLogicalMyth / zeroday-powershell

  View on GitHub
  A PowerShell example of the Windows zero day priv esc
  ☆328Sep 12, 2018Updated 7 years ago
• nopfor / ntlm_challenger

  View on GitHub
  Parse NTLM challenge messages over HTTP and SMB
  ☆150Nov 10, 2022Updated 3 years ago
• LMGsec / Magic-Unicorn-Tool

  View on GitHub
  ☆261Jul 6, 2018Updated 7 years ago
• sud0woodo / DCOMrade

  View on GitHub
  Powershell script for enumerating vulnerable DCOM Applications
  ☆266Nov 30, 2018Updated 7 years ago