Alternatives and similar repositories for PopulateActiveDirectory:

Users that are interested in PopulateActiveDirectory are comparing it to the libraries listed below

• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆72Updated 3 months ago
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆82Updated 5 months ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆89Updated 3 years ago
• humio / security_monitoring
  ☆41Updated last year
• p0w3rsh3ll / NetCease
  ☆60Updated 3 years ago
• olafhartong / WDACme
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆28Updated last year
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆64Updated last month
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆103Updated last month
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆50Updated 2 weeks ago
• CompassSecurity / Readinizer
  Microsoft GPO Readiness Lateral Movement Detection Tool
  ☆16Updated 2 years ago
• biffalo / easy-wins-endpoint-defense
  Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…
  ☆38Updated 9 months ago
• DefensiveOrigins / DO-LAB
  ☆45Updated 3 weeks ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆36Updated 2 months ago
• QueenSquishy / Zombie
  General Content
  ☆21Updated 6 months ago
• Trimarc / Invoke-TrimarcADChecks
  The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…
  ☆42Updated last year
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆93Updated last year
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆22Updated 4 months ago
• zaneGittins / Huntress
  PowerShell tool to triage systems
  ☆12Updated last year
• gmellini / Microsoft-Defender-Security-Center-Hunting-Queries
  Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…
  ☆37Updated 3 years ago
• RoqueNight / DefenderATP-Proactive-Threat-Hunting-Queries-KQL
  List of custom developed KQL queries to help proactive security teams hunt for opportunistic and sophisticated threat activity by develop…
  ☆24Updated 3 years ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated 2 months ago
• MHaggis / notes
  Full of public notes and Utilities
  ☆95Updated 2 months ago
• jangeisbauer / gundog
  gundog - guided hunting in Microsoft Defender
  ☆52Updated 3 years ago
• YossiSassi / hAcKtive-Directory-Forensics
  ☆49Updated 2 weeks ago
• PlumHound / PlumHound-Tasks
  Community Tasks/Plans for PlumHound Queueing
  ☆23Updated last year
• dwmetz / QuickPcap
  A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.
  ☆40Updated 2 years ago
• JeffMichelmore / MDEKit
  ☆41Updated last year
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆97Updated 2 years ago
• j91321 / ansible-role-sysmon
  Ansible role for installing Sysmon with popular config files included.
  ☆24Updated 2 years ago
• OTRF / Set-AuditRule
  Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity
  ☆89Updated 2 years ago