ScarredMonk / PopulateActiveDirectory

Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, groups objects, GPOs and network shares required. It also adds ASREProast account, kerberoastable account, and misconfigured ACLs to the domain for testing purposes

☆28

Related projects ⓘ

Alternatives and complementary repositories for PopulateActiveDirectory

reprise99 / 4688-sysmon
☆48Updated last year
LaresLLC / SysmonConfigPusher
Pushes Sysmon Configs
☆89Updated 3 years ago
dwmetz / QuickPcap
A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.
☆40Updated 2 years ago
NetSPI / PowerHunt
PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
☆60Updated 7 months ago
MHaggis / ASRGEN
ASR Configurator, Essentials and Atomic Testing
☆35Updated last week
DefensiveOrigins / DO-LAB
☆43Updated 3 weeks ago
Qazeer / FarsightAD
PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
☆93Updated 11 months ago
DCScoder / ESXiTri
ESXi Cyber Security Incident Response Script
☆20Updated 2 months ago
invictus-ir / Blue-team-app-Office-365-and-Azure
☆70Updated 2 weeks ago
QueenSquishy / Zombie
General Content
☆20Updated 3 months ago
mdecrevoisier / Windows-auditing-baseline
Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
☆45Updated 10 months ago
Trimarc / Invoke-TrimarcADChecks
The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…
☆35Updated last year
PlumHound / PlumHound-Tasks
Community Tasks/Plans for PlumHound Queueing
☆23Updated last year
Bert-JanP / Domain-Response
Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
☆44Updated 7 months ago
biffalo / easy-wins-endpoint-defense
Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…
☆38Updated 7 months ago
zaneGittins / Huntress
PowerShell tool to triage systems
☆12Updated last year
olafhartong / DefenderHarvester
Expose a lot of MDE telemetry that is not easily accessible in any searchable form
☆99Updated 3 months ago
olafhartong / WDACme
A WDAC configuration repository with the sole intention of enriching MDE
☆27Updated last year
humio / security_monitoring
☆40Updated last year
CompassSecurity / Readinizer
Microsoft GPO Readiness Lateral Movement Detection Tool
☆16Updated last year
securityjoes / Crowdstrike-Deploy
The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
☆22Updated 2 months ago
jischell-msft / RemoteManagementMonitoringTools
Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
☆78Updated 3 months ago
magicsword-io / LOLBASline
Baseline a Windows System against LOLBAS
☆24Updated 6 months ago
p0w3rsh3ll / NetCease
☆58Updated 3 years ago
freeload101 / Bloodhound-Portable
Bloodhound Portable for Windows
☆51Updated last year
TrimarcJake / PowerPUG
A tiny tool built to help AD Admins safely utilize the Protected Users group.
☆25Updated 3 weeks ago
Trimarc / Locksmith
A tiny tool to identify and remediate common misconfigurations in Active Directory Certificate Services
☆19Updated last month
Kaidja / EntraID
Automation around Entra ID
☆34Updated 4 months ago
YossiSassi / hAcKtive-Directory-Forensics
☆46Updated last year