NetSPI / PowerHunt

Related projects ⓘ

Alternatives and complementary repositories for PowerHunt

• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆93Updated 11 months ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆90Updated 2 years ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated last week
• DefensiveOrigins / DO-LAB
  ☆43Updated 3 weeks ago
• darkoperator / Veil-PowerView
  Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.
  ☆49Updated 9 years ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated last year
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆106Updated 4 months ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆89Updated 3 years ago
• improsec / ImproHound
  Identify the attack paths in BloodHound breaking your AD tiering
  ☆307Updated 2 years ago
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆78Updated 3 months ago
• Semperis / SilverSamlForger
  Silver SAML forgery tool
  ☆42Updated 8 months ago
• secureworks / TokenMan
  ☆98Updated 2 years ago
• improsec / 2Cloudz
  ☆22Updated 2 years ago
• JoelGMSec / AzureGraph
  Azure AD enumeration over MS Graph
  ☆80Updated last year
• doredry / TokenFinder
  Tool to extract powerful tokens from Office desktop apps memory
  ☆67Updated 8 months ago
• wunderwuzzi23 / ropci
  So, you think you have MFA? AAD/ROPC/MFA bypass testing tool
  ☆98Updated last year
• SadProcessor / HandsOnBloodHound
  Material for the "Hands-On BloodHound" Workshop
  ☆105Updated 3 years ago
• 0xe7 / WonkaVision
  ☆80Updated last year
• mvelazc0 / msInvader
  M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.
  ☆111Updated 6 months ago
• paladin316 / ThreatHunting
  This repo is where I store my Threat Hunting ideas/content
  ☆85Updated last year
• SygniaLabs / ScallOps
  ☆50Updated 2 months ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆35Updated last week
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆135Updated 6 months ago
• nyxgeek / track_the_planet
  DEFCON 31 slide deck and video link
  ☆58Updated 4 months ago
• Qazeer / InfoSec-Notes
  InfoSec Notes
  ☆53Updated 7 months ago
• absolomb / FindMeAccess
  ☆46Updated 7 months ago
• nasbench / C2-Matrix-Indicators
  This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix
  ☆72Updated 2 years ago
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 3 years ago
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆24Updated 6 months ago
• reprise99 / 4688-sysmon
  ☆48Updated last year