Alternatives and similar repositories for PowerHunt

Users that are interested in PowerHunt are comparing it to the libraries listed below

• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆96Updated 3 months ago
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆152Updated 2 weeks ago
• YossiSassi / hAcKtive-Directory-Forensics
  ☆53Updated last week
• csandker / Azure-AccessPermissions
  ☆110Updated 2 years ago
• secureworks / PhishInSuits
  ☆116Updated 4 years ago
• darkoperator / Veil-PowerView
  Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.
  ☆60Updated 10 years ago
• trustedsec / User-Behavior-Mapping-Tool
  ☆166Updated 2 years ago
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆115Updated last year
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆110Updated 2 months ago
• ScarredMonk / PopulateActiveDirectory
  Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …
  ☆38Updated 3 years ago
• doredry / TokenFinder
  Tool to extract powerful tokens from Office desktop apps memory
  ☆71Updated last year
• DefensiveOrigins / DO-LAB
  ☆47Updated last week
• sap8899 / reportly
  Reportly is an AzureAD user activity report tool.
  ☆94Updated 2 years ago
• tothi / smbmap
  SMBMap is a handy SMB enumeration tool - here with Kerberos support
  ☆72Updated 3 years ago
• nyxgeek / track_the_planet
  DEFCON 31 slide deck and video link
  ☆65Updated 4 months ago
• C0axx / CanaryHunter
  Canary Hunter aims to be a quick PowerShell script to check for Common Canaries in various formats generated for free on canarytokens.org
  ☆123Updated 2 years ago
• ImpostorKeanu / bl-bfg
  ☆36Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆96Updated 3 years ago
• secureworks / whiskeysamlandfriends
  GoldenSAML Attack Libraries and Framework
  ☆75Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆83Updated last year
• Qazeer / InfoSec-Notes
  InfoSec Notes
  ☆58Updated last year
• sans-blue-team / DNS-Exfiltrate
  ☆26Updated 2 years ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 4 years ago
• GabrielDuschl / Automated-CME-Password-Spraying
  A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…
  ☆15Updated 2 years ago
• haim-n / Windows-Security-Assessment
  Assess Windows OS for security misconfigurations and hardening opportunities.
  ☆34Updated last year
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated 11 months ago
• Semperis / SilverSamlForger
  Silver SAML forgery tool
  ☆56Updated last year
• techBrandon / CAPs
  Scripts to enumerate and report on Entra Conditional Access
  ☆39Updated last month
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆26Updated 2 years ago
• secureworks / TokenMan
  ☆103Updated 2 years ago