ScarredMonk / PopulateActiveDirectory
Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, groups objects, GPOs and network shares required. It also adds ASREProast account, kerberoastable account, and misconfigured ACLs to the domain for testing purposes
☆34Updated 3 years ago
Alternatives and similar repositories for PopulateActiveDirectory:
Users that are interested in PopulateActiveDirectory are comparing it to the libraries listed below
- ☆41Updated 2 years ago
- ☆72Updated 6 months ago
- PowerShell tool to triage systems☆12Updated last year
- The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…☆50Updated last year
- Pushes Sysmon Configs☆88Updated 3 years ago
- A tiny tool built to find and fix common misconfigurations in Active Directory-integrated DNS☆112Updated 3 months ago
- ESXi Cyber Security Incident Response Script☆23Updated 7 months ago
- A WDAC configuration repository with the sole intention of enriching MDE☆28Updated 2 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆69Updated 4 months ago
- ASR Configurator, Essentials and Atomic Testing☆39Updated last week
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆105Updated 4 months ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- ☆62Updated 3 years ago
- ☆47Updated last week
- A tiny tool to identify and remediate common misconfigurations in Active Directory Certificate Services☆23Updated 2 months ago
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Updated last year
- ☆62Updated last year
- Monitor your PingCastle scans to highlight the rule diff between two scans☆111Updated 8 months ago
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆86Updated 8 months ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆54Updated 3 months ago
- ☆41Updated 3 years ago
- Reportly is an AzureAD user activity report tool.☆92Updated last year
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆47Updated last year
- Azure function to insert MISP data in to Azure Sentinel☆32Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated 2 years ago
- gundog - guided hunting in Microsoft Defender☆52Updated 3 years ago
- Build a domain with three quick PowerShell scripts!☆29Updated 4 years ago
- Community Tasks/Plans for PlumHound Queueing☆23Updated 2 years ago
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆13Updated 4 years ago