YossiSassi / Get-UserSessionLinks
Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, whether Active or Disconnected
☆92Updated 4 months ago
Alternatives and similar repositories for Get-UserSession
Users that are interested in Get-UserSession are comparing it to the libraries listed below
Sorting:
- Pushes Sysmon Configs☆88Updated 4 years ago
- Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …☆36Updated 3 years ago
- ☆53Updated 3 months ago
- ☆115Updated 6 years ago
- Powershell Event Tracing Toolbox☆76Updated 3 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆95Updated last week
- ☆38Updated 3 years ago
- Simple PowerShell script to enable process scanning with Yara.☆95Updated 2 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆114Updated 11 months ago
- Audit program for AzureAD☆150Updated 2 years ago
- MDE relies on some of the Audit settings to be enabled☆98Updated 3 years ago
- This script validates the most common Conditional Access policies in Microsoft 365.☆10Updated last year
- Get insights into the actual strength and quality of passwords in Active Directory.☆155Updated last year
- ☆42Updated 2 years ago
- ☆65Updated 4 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆71Updated 7 months ago
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.☆59Updated 10 years ago
- A GUI to query the API of abuse.ch.☆70Updated 3 years ago
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆93Updated 3 years ago
- A collection of Powershell scripts that will help automate the build process for a Marvel domain.☆147Updated last year
- Bloodhound Portable for Windows☆53Updated 2 years ago
- ☆66Updated last year
- PowerShell tool to triage systems☆12Updated 2 years ago
- Reportly is an AzureAD user activity report tool.☆95Updated last year
- Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.☆53Updated 2 years ago
- Kerberoast Detection Script☆30Updated 9 months ago
- A tool for auditing network shares in an Active Directory environment☆42Updated 6 years ago
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆107Updated 7 months ago