OTRF / bloodhound-notebooksLinks
Notebooks created to attack and secure Active Directory environments
☆27Updated 5 years ago
Alternatives and similar repositories for bloodhound-notebooks
Users that are interested in bloodhound-notebooks are comparing it to the libraries listed below
Sorting:
- Python parser for Red Canary's Atomic Red Team Yamls☆27Updated 6 years ago
- OSSEM Modular☆27Updated 5 years ago
- PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…☆50Updated 6 years ago
- Powershell / C# based cross platform forensic framework based for live incident response☆23Updated 5 years ago
- Manticore Adversary Emulation Cli☆48Updated 5 years ago
- BloodHound Cypher Queries Ported to a Jupyter Notebook☆53Updated 5 years ago
- Presentation materials for talks I've given.☆20Updated 6 years ago
- Accompanying PowerShell Modules for DevSec Defense Presentation☆29Updated 7 years ago
- Crowdstrike Falcon Host script for iterating through instances to get alert and other relevant data☆13Updated 6 years ago
- SilkETW & SilkService☆40Updated 6 years ago
- Cybersecurity Incidents Mind Maps☆33Updated 4 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Updated 4 years ago
- A series of Bro Scripts created for detection purposes.☆19Updated 8 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Updated 3 years ago
- A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.☆15Updated 6 years ago
- C# User Simulation☆33Updated 3 years ago
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated 2 years ago
- Obtains a list of GPOs based on known Client Side Extensions (CSE) that normally contain passwords☆33Updated 6 years ago
- LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network☆74Updated 6 years ago
- Indicator of Compromise Scanner for CVE-2019-19781☆94Updated 5 years ago
- Set of ultra technical notes about AD☆18Updated 7 years ago
- Microsoft Flow Attack Framework☆23Updated 5 years ago
- A list of IOCs applicable to PoshC2☆24Updated 5 years ago
- BloodHound Data Scanner☆45Updated 5 years ago
- Audit Powershell and search from known keywords in history #Blueteam☆25Updated 5 years ago
- Bunch of honey related items that spoof/decoy powersploit functions.☆18Updated 5 years ago
- Fake SMB and SAMR data☆11Updated 5 years ago
- Terraform script to deploy AD-based environment on Azure☆41Updated 2 years ago
- PowerShell Memory Pulling script☆19Updated 10 years ago
- ☆12Updated 7 years ago