ScarredMonk / PopulateActiveDirectoryLinks
Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, groups objects, GPOs and network shares required. It also adds ASREProast account, kerberoastable account, and misconfigured ACLs to the domain for testing purposes
☆35Updated 3 years ago
Alternatives and similar repositories for PopulateActiveDirectory
Users that are interested in PopulateActiveDirectory are comparing it to the libraries listed below
Sorting:
- ☆72Updated 7 months ago
- Pushes Sysmon Configs☆88Updated 3 years ago
- ☆41Updated 2 years ago
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆106Updated 5 months ago
- A WDAC configuration repository with the sole intention of enriching MDE☆28Updated 2 years ago
- ASR Configurator, Essentials and Atomic Testing☆42Updated last month
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆54Updated last week
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆70Updated 5 months ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- ☆47Updated last month
- ☆41Updated last year
- ☆62Updated last year
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆47Updated last year
- The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…☆51Updated last year
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Updated last year
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆88Updated 10 months ago
- Azure function to insert MISP data in to Azure Sentinel☆32Updated 2 years ago
- ESXi Cyber Security Incident Response Script☆22Updated 9 months ago
- Automation around Entra ID☆36Updated 6 months ago
- Hunting Queries for Defender ATP☆82Updated last month
- ☆52Updated last month
- Community Tasks/Plans for PlumHound Queueing☆23Updated 2 years ago
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated 2 years ago
- A PowerShell incident response script for quick triage☆80Updated 2 years ago
- Baseline a Windows System against LOLBAS☆27Updated last year
- ☆42Updated 4 years ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆111Updated 9 months ago
- Sample queries for Advanced hunting in Windows Defender ATP☆11Updated 5 years ago
- A list of resources to build a information security team.☆13Updated 4 years ago
- PowerShell tool to triage systems☆12Updated 2 years ago