ZephrFish / edr-checker
Gets the name of all currently running process then checks them against a list of known defensive products such as AV's, EDR's and logging tools.
☆14Updated 2 years ago
Alternatives and similar repositories for edr-checker:
Users that are interested in edr-checker are comparing it to the libraries listed below
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆52Updated 10 months ago
- Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.☆89Updated 10 months ago
- A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…☆37Updated last month
- Some scripts to support with importing large datasets into BloodHound☆79Updated last year
- ☆135Updated last year
- ☆71Updated last year
- pysnaffler☆91Updated 3 weeks ago
- Get Fine Grained Password Policy☆68Updated 11 months ago
- ☆158Updated 4 months ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 3 years ago
- ☆88Updated 2 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆130Updated last year
- ☆148Updated last month
- Red Team "Drop and Run" NAC (802.1x) Bypass☆70Updated last year
- ☆45Updated last year
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆92Updated last year
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆55Updated 4 years ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆121Updated 3 years ago
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆37Updated last year
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆119Updated 2 years ago
- python spraying tools based on impacket lib☆51Updated 2 years ago
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆77Updated 9 months ago
- ☆36Updated 4 years ago
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- Hybrid AD utilities for ROADtools☆72Updated 2 months ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆65Updated 9 months ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆55Updated 3 years ago
- A Python POC for CRED1 over SOCKS5☆144Updated 6 months ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆112Updated 11 months ago