ScarredMonk / PopulateActiveDirectory
Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, groups objects, GPOs and network shares required. It also adds ASREProast account, kerberoastable account, and misconfigured ACLs to the domain for testing purposes
☆28Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for PopulateActiveDirectory
- ☆48Updated last year
- Pushes Sysmon Configs☆89Updated 3 years ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆60Updated 7 months ago
- ASR Configurator, Essentials and Atomic Testing☆35Updated last week
- ☆43Updated 3 weeks ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated 11 months ago
- ESXi Cyber Security Incident Response Script☆20Updated 2 months ago
- ☆70Updated 2 weeks ago
- General Content☆20Updated 3 months ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆45Updated 10 months ago
- The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…☆35Updated last year
- Community Tasks/Plans for PlumHound Queueing☆23Updated last year
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆44Updated 7 months ago
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Updated 7 months ago
- PowerShell tool to triage systems☆12Updated last year
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆99Updated 3 months ago
- A WDAC configuration repository with the sole intention of enriching MDE☆27Updated last year
- ☆40Updated last year
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated last year
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆22Updated 2 months ago
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆78Updated 3 months ago
- Baseline a Windows System against LOLBAS☆24Updated 6 months ago
- ☆58Updated 3 years ago
- Bloodhound Portable for Windows☆51Updated last year
- A tiny tool built to help AD Admins safely utilize the Protected Users group.☆25Updated 3 weeks ago
- A tiny tool to identify and remediate common misconfigurations in Active Directory Certificate Services☆19Updated last month
- Automation around Entra ID☆34Updated 4 months ago
- ☆46Updated last year