Alternatives and similar repositories for PowerHunt

Users that are interested in PowerHunt are comparing it to the libraries listed below

• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆95Updated last year
• darkoperator / Veil-PowerView
  Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.
  ☆58Updated 10 years ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆107Updated 7 months ago
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆114Updated 11 months ago
• DefensiveOrigins / DO-LAB
  ☆47Updated 3 months ago
• ScarredMonk / PopulateActiveDirectory
  Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …
  ☆36Updated 3 years ago
• nyxgeek / track_the_planet
  DEFCON 31 slide deck and video link
  ☆64Updated last month
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆95Updated 2 years ago
• csandker / Azure-AccessPermissions
  ☆108Updated 2 years ago
• sap8899 / reportly
  Reportly is an AzureAD user activity report tool.
  ☆95Updated last year
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆113Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆82Updated last year
• ImpostorKeanu / bl-bfg
  ☆36Updated last year
• secureworks / PhishInSuits
  ☆112Updated 4 years ago
• C0axx / CanaryHunter
  Canary Hunter aims to be a quick PowerShell script to check for Common Canaries in various formats generated for free on canarytokens.org
  ☆121Updated 2 years ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated 8 months ago
• doredry / TokenFinder
  Tool to extract powerful tokens from Office desktop apps memory
  ☆72Updated last year
• PlumHound / PlumHound-Tasks
  Community Tasks/Plans for PlumHound Queueing
  ☆23Updated 2 years ago
• GabrielDuschl / Automated-CME-Password-Spraying
  A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…
  ☆14Updated last year
• YossiSassi / hAcKtive-Directory-Forensics
  ☆53Updated 2 months ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 4 years ago
• JoelGMSec / AzureGraph
  Azure AD enumeration over MS Graph
  ☆82Updated 2 years ago
• trustedsec / User-Behavior-Mapping-Tool
  ☆164Updated last year
• xg5-simon / MS-Graph-BlueTeam
  MS Graph Commands and Tools for Blue Teamers
  ☆50Updated last year
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆27Updated last year
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆27Updated last year
• p0w3rsh3ll / NetCease
  ☆64Updated 4 years ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆117Updated 5 months ago
• brokensound77 / LoFP
  Living off the False Positive!
  ☆37Updated 5 months ago
• YossiSassi / Get-UserSession
  Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, w…
  ☆92Updated 3 months ago