YossiSassi / AD-Replication-MetadataLinks
Track previous changes on specific AD accounts (users, computers) and Groups (online DC), even if event logs were wiped/not collected (e.g. during an Incident Response). Uses Replication metadata history parsing. Online and offline DB (backup)
☆16Updated 7 months ago
Alternatives and similar repositories for AD-Replication-Metadata
Users that are interested in AD-Replication-Metadata are comparing it to the libraries listed below
Sorting:
- Takes the original idea of NetCease and adds functionality☆24Updated 3 years ago
- a tiny program to consume from ETW providers for research☆52Updated 9 months ago
- PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office☆35Updated 2 years ago
- ☆23Updated 7 months ago
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 3 years ago
- ☆14Updated last year
- Bloodhound Portable for Windows☆53Updated 2 years ago
- This script generates a groups.xml file that mimics a real GPP to create a new user on domain-joined computers☆46Updated 5 years ago
- General Content☆26Updated last year
- blame Huy☆42Updated 4 years ago
- Python tool to find vulnerable AD object and generating csv report☆26Updated 3 years ago
- ☆21Updated last month
- ☆45Updated last year
- create a "simulated internet" cyber range environment☆18Updated 4 months ago
- Tool to perform lateral movement between AAD joined devices☆64Updated 3 years ago
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆52Updated 2 years ago
- PowerShell PE Parser☆64Updated last year
- Living off the False Positive!☆40Updated 8 months ago
- Create a cool process tree like https://twitter.com/ACEResponder.☆35Updated 2 years ago
- ☆28Updated 5 years ago
- Tools for offensive security of NetBackup infrastructures☆41Updated 2 years ago
- Simple PowerShell script to enable process scanning with Yara.☆96Updated 3 years ago
- Placeholder for my detection repo and misc detection engineering content☆42Updated 2 years ago
- Python tool to find vulnerable AD object and generating csv report☆14Updated 3 years ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated 2 years ago
- Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token☆26Updated 2 years ago
- ☆85Updated 2 years ago
- self-hosted Azure OSINT tool☆31Updated 4 months ago
- HashKitty is a user-friendly cross-platform Python wrapper for Hashcat designed to provide an easy password cracking experience for both …☆40Updated last year
- Top hashpwn rules☆21Updated 11 months ago