Qazeer / FarsightADLinks
PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory domain compromise
☆96Updated 3 months ago
Alternatives and similar repositories for FarsightAD
Users that are interested in FarsightAD are comparing it to the libraries listed below
Sorting:
- Default Detections for EDR☆96Updated last year
- ☆85Updated 2 years ago
- Active C&C Detector☆156Updated 2 years ago
- Simple PowerShell script to enable process scanning with Yara.☆96Updated 3 years ago
- Tool to extract powerful tokens from Office desktop apps memory☆71Updated last year
- ☆71Updated 2 months ago
- Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike [Purple Team].☆157Updated 2 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆71Updated 10 months ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆152Updated 2 weeks ago
- ☆110Updated 2 years ago
- ☆107Updated 2 years ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆83Updated last year
- ☆160Updated last year
- ☆103Updated 2 years ago
- Baseline a Windows System against LOLBAS☆68Updated last year
- ☆179Updated 10 months ago
- A collection of tools, scripts and personal research☆145Updated 2 months ago
- InfoSec Notes☆58Updated last year
- Identify the attack paths in BloodHound breaking your AD tiering☆323Updated 2 years ago
- GolenGMSA tool for working with GMSA passwords☆163Updated 2 months ago
- Pushes Sysmon Configs☆88Updated 4 years ago
- Finding all things on-prem Microsoft for password spraying and enumeration.☆257Updated 3 years ago
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆107Updated last year
- ☆33Updated last year
- A Azure Exploitation Toolkit for Red Team & Pentesters☆164Updated 2 years ago
- Kerberoast Detection Script☆30Updated 11 months ago
- Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04☆115Updated last year
- SMBMap is a handy SMB enumeration tool - here with Kerberos support☆72Updated 3 years ago
- Audit program for AzureAD☆149Updated 2 years ago