YossiSassi / Get-UserSessionLinks
Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, whether Active or Disconnected
☆92Updated 2 months ago
Alternatives and similar repositories for Get-UserSession
Users that are interested in Get-UserSession are comparing it to the libraries listed below
Sorting:
- Pushes Sysmon Configs☆88Updated 3 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- Powershell Event Tracing Toolbox☆75Updated 3 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆94Updated last year
- Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …☆35Updated 3 years ago
- ☆114Updated 5 years ago
- ☆62Updated 3 years ago
- MDE relies on some of the Audit settings to be enabled☆98Updated 2 years ago
- A PowerShell incident response script for quick triage☆80Updated 2 years ago
- Get insights into the actual strength and quality of passwords in Active Directory.☆154Updated 10 months ago
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆91Updated 3 years ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆111Updated 9 months ago
- ☆65Updated last year
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆70Updated 5 months ago
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆106Updated 5 months ago
- ☆41Updated 2 years ago
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- Audit program for AzureAD☆148Updated 2 years ago
- A collection of Powershell scripts that will help automate the build process for a Marvel domain.☆147Updated last year
- ☆72Updated 7 months ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆82Updated 2 years ago
- Simple PowerShell script to enable process scanning with Yara.☆93Updated 2 years ago
- Identify the attack paths in BloodHound breaking your AD tiering☆320Updated 2 years ago
- Reportly is an AzureAD user activity report tool.☆95Updated last year
- ☆52Updated last month
- Bloodhound Portable for Windows☆51Updated 2 years ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆88Updated 10 months ago
- A tiny tool built to find and fix common misconfigurations in Active Directory-integrated DNS☆115Updated 4 months ago
- A PowerShell script that automates the security assessment of Microsoft Active Directory environments.☆65Updated 2 years ago