YossiSassi / AD-Replication-MetadataLinks
Track previous changes on specific AD accounts (users, computers) and Groups (online DC), even if event logs were wiped/not collected (e.g. during an Incident Response). Uses Replication metadata history parsing. Online and offline DB (backup)
☆16Updated 3 months ago
Alternatives and similar repositories for AD-Replication-Metadata
Users that are interested in AD-Replication-Metadata are comparing it to the libraries listed below
Sorting:
- This is a repo for fetching Applocker event log by parsing the win-event log☆31Updated 2 years ago
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago
- ☆14Updated last year
- self-hosted Azure OSINT tool☆30Updated 9 months ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆23Updated 2 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 3 years ago
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Updated last year
- Python tool to find vulnerable AD object and generating csv report☆14Updated 2 years ago
- The repository accompanying the Buer Emulation workshop☆24Updated 3 years ago
- ☆18Updated last year
- Takes the original idea of NetCease and adds functionality☆24Updated 3 years ago
- A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.☆21Updated 11 months ago
- ☆45Updated last year
- Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption☆19Updated 2 years ago
- A list of IOCs applicable to PoshC2☆24Updated 4 years ago
- ☆23Updated 3 years ago
- OpenHashAPI provides a secure method of communicating hashes and enables lightweight workflows for security practitioners and enthusiasts…☆14Updated 7 months ago
- A proof-of-concept re-assembler for reverse VNC traffic.☆25Updated 2 years ago
- Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual☆14Updated 2 years ago
- The Totally Legit Authentication Dialog☆12Updated last year
- reboot of https://github.com/Genetic-Malware/Ebowla in order to simplify / modernize the codebase and provide ongoing support☆22Updated 3 years ago
- a tiny program to consume from ETW providers for research☆49Updated 5 months ago
- Parser for Windows PowerShell script block logs☆13Updated 5 months ago
- General Content☆26Updated 11 months ago
- Nemesis agent for Mythic☆27Updated 9 months ago
- ☆11Updated 4 years ago
- Repository for LNK stuff☆30Updated 2 years ago
- ☆17Updated 11 months ago
- A collection of my presentation materials.☆17Updated last year
- Serving files with conditions, serverside keying and more.☆18Updated 3 years ago