Alternatives and similar repositories for FarsightAD:

Users that are interested in FarsightAD are comparing it to the libraries listed below

• QueenSquishy / plague
  Default Detections for EDR
  ☆96Updated last year
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆69Updated 4 months ago
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆93Updated 2 years ago
• doredry / TokenFinder
  Tool to extract powerful tokens from Office desktop apps memory
  ☆71Updated last year
• 0xe7 / WonkaVision
  ☆82Updated 2 years ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 3 years ago
• improsec / ImproHound
  Identify the attack paths in BloodHound breaking your AD tiering
  ☆319Updated 2 years ago
• Cyb3r-Monk / ACCD
  Active C&C Detector
  ☆153Updated last year
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆66Updated 2 years ago
• Qazeer / InfoSec-Notes
  InfoSec Notes
  ☆56Updated last year
• secureworks / TokenMan
  ☆100Updated 2 years ago
• LuemmelSec / Custom-BloodHound-Queries
  ☆178Updated 4 months ago
• TH3xACE / EDR-Test
  Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].
  ☆150Updated 2 years ago
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆144Updated last year
• embee-research / Yara-detection-rules
  Yara Rules for Modern Malware
  ☆76Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 11 months ago
• absolomb / FindMeAccess
  ☆88Updated last week
• nettitude / MalSCCM
  ☆246Updated last year
• roobixx / EventLogForRedTeams
  Simple PoC from Malicious Payload Injection from Windows Event Log Entry
  ☆27Updated 2 years ago
• SadProcessor / HandsOnBloodHound
  Material for the "Hands-On BloodHound" Workshop
  ☆108Updated 3 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆91Updated last year
• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆151Updated 3 months ago
• ACE-Responder / ace-proctree
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Updated 2 years ago
• CrowdStrike / OWASSRF
  ☆13Updated 2 years ago
• herbiezimmerman / Windows-Event-Logs-With-Event-IDs
  A running list of Windows sources and the related event ids.
  ☆19Updated last year
• MHaggis / notes
  Full of public notes and Utilities
  ☆98Updated 2 months ago
• darkoperator / Veil-PowerView
  Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.
  ☆55Updated 10 years ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated 5 months ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆76Updated last year
• HackmichNet / AzTokenFinder
  ☆106Updated 2 years ago