Alternatives and similar repositories for ACLViewer

Users that are interested in ACLViewer are comparing it to the libraries listed below

• jborean93 / AmsiProvider
  Test AMSI Provider implementation in C#
  ☆42Updated last year
• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆191Updated 10 months ago
• notEricaZelic / M365AdminAccessReviewer
  Shows which M365 Objects have Privileged Access and what type (i.e. PIM, Direct, Currently Elevated)
  ☆38Updated 8 months ago
• amjcyber / EDRNoiseMaker
  Detect WFP filters blocking EDR communications
  ☆96Updated 2 years ago
• zeronetworks / ldapfw
  Protect your Domain Controllers by auditing and restricting LDAP requests
  ☆177Updated 8 months ago
• rad9800 / FileRenameJunctionsEDRDisable
  ☆159Updated last year
• decoder-it / ChgPass
  ☆137Updated 11 months ago
• CCob / Shwmae
  ☆160Updated last year
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆53Updated last year
• OtterHacker / Hooker
  ☆108Updated last year
• jonny-jhnson / LDAPMon
  ☆46Updated 2 years ago
• kas-sec / version.dll-sideloading
  sideloading PoC using onedrive.exe & version.dll
  ☆90Updated 3 months ago
• secureworks / BAADTokenBroker
  ☆116Updated 7 months ago
• olafhartong / BamboozlEDR
  A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.
  ☆257Updated 4 months ago
• CICADA8-Research / MyMSIAnalyzer
  Analyse MSI files for vulnerabilities
  ☆141Updated last year
• klsecservices / CPLDCOMTrigger
  ☆46Updated last month
• TierZeroSecurity / edr_blocker
  Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…
  ☆139Updated last year
• MHaggis / NEBULA
  Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques
  ☆89Updated last month
• andreisss / Living-off-the-COM-Type-Coercion-Abuse
  This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…
  ☆51Updated 8 months ago
• olafhartong / ETWLocksmith
  A powerful Windows command-line tool for analyzing and searching ETW (Event Tracing for Windows) provider permissions from the Windows re…
  ☆62Updated 6 months ago
• t94j0 / sddl_py
  Parse SDDL strings
  ☆37Updated last year
• Maldev-Academy / PrefetchFileParser
  A lightweight Windows Prefetch file parser to extract programs' execution history
  ☆49Updated 2 weeks ago
• Shac0x / Wonka
  Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…
  ☆161Updated 3 months ago
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆75Updated last year
• decoder-it / Troopers24
  ☆43Updated last year
• zero2504 / Fairy-Law
  Fairy Law - Compromise or disable EDR security solutions
  ☆65Updated 2 months ago
• whokilleddb / sinister-vsix
  Blog/Journal on how to backdoor VSCode extensions
  ☆76Updated 6 months ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆130Updated 4 years ago
• SafeBreach-Labs / CortexVortex
  ☆80Updated last year
• warpnet / COM-Fuzzer
  Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By…
  ☆154Updated 2 months ago