TonyPhipps / Powershell
Tony's collection of powershell scripts, typically geared toward cybersec
☆32Updated last week
Alternatives and similar repositories for Powershell:
Users that are interested in Powershell are comparing it to the libraries listed below
- Little PowerShell module to extract PowerShell scripts that no longer exists on disk but were run and are still in Event Logs.☆40Updated 4 years ago
- PowerShell Script for Agentless Incident Response☆25Updated 6 years ago
- PowerShell script useful for Incident Response and security/configuration baselines for Windows Vista and later☆20Updated 9 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆38Updated 2 years ago
- 🔎 Use urlscan.io with PowerShell!☆32Updated 4 years ago
- incident response scripts☆19Updated 6 years ago
- Build a domain with three quick PowerShell scripts!☆29Updated 4 years ago
- Defensive-oriented Active Directory enumeration☆23Updated 9 years ago
- Find accounts using common and default passwords in Active Directory.☆66Updated 5 years ago
- Finds event logs between two time points. Useful for helpdesk/support/malware analysis.☆47Updated 6 years ago
- Simple Powershell scripts to collect all Windows Event Logs from a host and parse them into one CSV timeline.☆33Updated 6 years ago
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated 2 years ago
- AdmPwd.E client and support tools☆32Updated 4 years ago
- A Windows PowerShell & PowerShell Core Module to calculate a CVSS3 Score based on a Vector string☆12Updated 2 years ago
- PowerShell Script for Windows Server Compliance / Security Configuration Audit☆61Updated 8 years ago
- Builds a hashmap of AD NTLM hashes/usernames and iterates through a second list of hashes checking for the existence of each entry in the…☆77Updated 4 years ago
- A series of scripts☆98Updated 3 years ago
- PowerShell Module to interact with VirusTotal☆119Updated 5 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆82Updated last year
- Azure Sentinel Template parser☆16Updated 4 years ago
- Automated forensics written in PowerShell☆34Updated 5 years ago
- A PowerShell module to abstract the complexities of Permanent WMI Event Subscriptions☆55Updated 9 years ago
- Powershell collection designed to assist in Threat Hunting Windows systems.☆27Updated 6 years ago
- This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommen…☆51Updated 7 months ago
- Scandiff is a PowerShell script to automate host discovery and scanning with nmap. After discovering and scanning hosts, scandiff perfor…☆17Updated 10 years ago
- This script runs several security checks and makes modifications (with your permission) to your Active Directory domain to improve it's s…☆45Updated 9 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆38Updated 2 years ago
- ☆49Updated 4 years ago
- Windows Event Forwarding for Active Directory Security Logs☆29Updated 8 years ago
- Sysmon configuration☆66Updated 6 years ago