ScarredMonk / PopulateActiveDirectory
Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, groups objects, GPOs and network shares required. It also adds ASREProast account, kerberoastable account, and misconfigured ACLs to the domain for testing purposes
☆35Updated 3 years ago
Alternatives and similar repositories for PopulateActiveDirectory
Users that are interested in PopulateActiveDirectory are comparing it to the libraries listed below
Sorting:
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- ☆72Updated 6 months ago
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆106Updated 5 months ago
- PowerShell tool to triage systems☆12Updated last year
- The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…☆51Updated last year
- Pushes Sysmon Configs☆88Updated 3 years ago
- ☆62Updated last year
- MDE relies on some of the Audit settings to be enabled☆97Updated 2 years ago
- ☆41Updated last year
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆54Updated 4 months ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆70Updated 5 months ago
- ☆41Updated 2 years ago
- ASR Configurator, Essentials and Atomic Testing☆40Updated last month
- ☆62Updated 3 years ago
- Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, w…☆92Updated last month
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 4 years ago
- Collection of PowerShell functinos and scripts a Blue Teamer might use☆84Updated last year
- A WDAC configuration repository with the sole intention of enriching MDE☆28Updated 2 years ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆47Updated last year
- ☆41Updated 3 years ago
- Automation around Entra ID☆36Updated 5 months ago
- ESXi Cyber Security Incident Response Script☆24Updated 8 months ago
- A tiny tool to identify and remediate common misconfigurations in Active Directory Certificate Services☆23Updated 2 months ago
- Community Tasks/Plans for PlumHound Queueing☆23Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- ☆47Updated last month
- Bloodhound Portable for Windows☆51Updated 2 years ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆111Updated 9 months ago
- ☆114Updated 5 years ago