Alternatives and similar repositories for ACLViewer

Users that are interested in ACLViewer are comparing it to the libraries listed below

• jborean93 / AmsiProvider
  Test AMSI Provider implementation in C#
  ☆42Updated 11 months ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆95Updated last year
• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆189Updated 9 months ago
• notEricaZelic / M365AdminAccessReviewer
  Shows which M365 Objects have Privileged Access and what type (i.e. PIM, Direct, Currently Elevated)
  ☆36Updated 7 months ago
• jonny-jhnson / LDAPMon
  ☆45Updated 2 years ago
• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆177Updated 6 months ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆53Updated 11 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆159Updated last year
• decoder-it / ChgPass
  ☆136Updated 10 months ago
• kas-sec / version.dll-sideloading
  sideloading PoC using onedrive.exe & version.dll
  ☆85Updated last month
• CCob / Shwmae
  ☆161Updated 10 months ago
• Gerenios / AADInternals-Endpoints
  AADInternals-Endpoints PowerShell module
  ☆32Updated 5 months ago
• netero1010 / SCCMVNC
  A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…
  ☆111Updated last year
• olafhartong / BamboozlEDR
  A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.
  ☆251Updated 2 months ago
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆75Updated last year
• t94j0 / sddl_py
  Parse SDDL strings
  ☆36Updated last year
• secureworks / BAADTokenBroker
  ☆113Updated 6 months ago
• JonasBK / Powershell
  ☆43Updated 10 months ago
• joe-desimone / rep-research
  ☆77Updated last year
• SafeBreach-Labs / CortexVortex
  ☆80Updated last year
• olafhartong / ETWLocksmith
  A powerful Windows command-line tool for analyzing and searching ETW (Event Tracing for Windows) provider permissions from the Windows re…
  ☆62Updated 4 months ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆163Updated last year
• Krypteria / Neo4LDAP
  Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…
  ☆92Updated last month
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆95Updated last year
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆139Updated last year
• Shac0x / Wonka
  Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…
  ☆149Updated last month
• andreisss / Living-off-the-COM-Type-Coercion-Abuse
  This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…
  ☆51Updated 7 months ago
• sudonoodle / BOF-entra-authcode-flow
  Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
  ☆105Updated 7 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆99Updated 7 months ago
• flostyen / windows-persistence
  Windows Persistence IT-Security
  ☆108Updated 9 months ago