Alternatives and similar repositories for ACLViewer

Users that are interested in ACLViewer are comparing it to the libraries listed below

• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆184Updated 7 months ago
• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆176Updated 5 months ago
• notEricaZelic / M365AdminAccessReviewer
  Shows which M365 Objects have Privileged Access and what type (i.e. PIM, Direct, Currently Elevated)
  ☆34Updated 5 months ago
• jborean93 / AmsiProvider
  Test AMSI Provider implementation in C#
  ☆42Updated 10 months ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆94Updated last year
• rad9800 / FileRenameJunctionsEDRDisable
  ☆158Updated 10 months ago
• olafhartong / ETWLocksmith
  A powerful Windows command-line tool for analyzing and searching ETW (Event Tracing for Windows) provider permissions from the Windows re…
  ☆60Updated 3 months ago
• jonny-jhnson / LDAPMon
  ☆45Updated 2 years ago
• CCob / Shwmae
  ☆162Updated 9 months ago
• decoder-it / ChgPass
  ☆135Updated 8 months ago
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆140Updated last year
• t94j0 / sddl_py
  Parse SDDL strings
  ☆36Updated last year
• JonasBK / Powershell
  ☆43Updated 8 months ago
• olafhartong / BamboozlEDR
  A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.
  ☆244Updated last month
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆128Updated 4 years ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆52Updated 9 months ago
• dsnezhkov / shutter
  ☆120Updated 4 years ago
• t94j0 / adexplorersnapshot-rs
  ☆83Updated last year
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆161Updated last year
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆75Updated last year
• flostyen / windows-persistence
  Windows Persistence IT-Security
  ☆106Updated 7 months ago
• kfallahi / UnderlayCopy
  PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads
  ☆117Updated last week
• SafeBreach-Labs / CortexVortex
  ☆80Updated last year
• 1r0BIT / TaskHound
  Tool to enumerate privileged Scheduled Tasks on Remote Systems
  ☆86Updated last week
• TwoSevenOneT / EDR-Redir
  EDR-Redir : a tool used to redirect the EDR's folder to another location.
  ☆63Updated this week
• AlmondOffSec / DCOMRunAs
  Lateral movement with DCOM DLL hijacking
  ☆166Updated 3 months ago
• netero1010 / SCCMVNC
  A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…
  ☆104Updated last year
• S3cur3Th1sSh1t / SharpVeeamDecryptor
  Decrypt Veeam database passwords
  ☆160Updated last year
• sensepost / mydumbedr
  ☆119Updated last year
• decoder-it / Troopers24
  ☆41Updated last year