airbus-seclab / btaLinks
Open source Active Directory security audit framework.
☆136Updated 7 years ago
Alternatives and similar repositories for bta
Users that are interested in bta are comparing it to the libraries listed below
Sorting:
- Active Directory permissions (ACL/ACE) auditing tools☆148Updated 8 years ago
- Smb Scanner from PingCastle☆125Updated 6 years ago
- PowerShell script to find 'vulnerable' security-related GPOs that should be hardended☆200Updated 7 years ago
- Simulating Adversary Operations☆96Updated 7 years ago
- PowerShell based Active Directory Honey User Account Management with Universal Dashboards☆141Updated 6 years ago
- The opposite of Ruler, provides blue teams with the ability to detect Ruler usage against Exchange.☆96Updated 8 years ago
- Dashboarding and Tooling front-end for PowerShell Empire using PowerShell Universal Dashboard☆104Updated 6 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆172Updated 9 months ago
- Audix is a PowerShell tool to quickly configure the Windows Event Audit Policies for security monitoring☆116Updated last month
- No-Script Automation Tool☆56Updated 7 years ago
- Mitre Att&ck Technique Emulation☆82Updated 6 years ago
- A PowerShell tool which provides an easy way to check for shared passwords between Windows Active Directory accounts☆32Updated 6 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆73Updated 4 years ago
- IR-Tools - PowerShell tools for IR☆130Updated 8 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆38Updated 2 years ago
- Credit to Helge Klein - https://helgeklein.com/blog/2015/02/creating-realistic-test-user-accounts-active-directory/☆69Updated 7 years ago
- Speeds up the extraction of password hashes from ntds.dit files. For use with the ntdsxtract project or the dshash script☆27Updated last year
- A powershell script for creating a Windows honeyport.☆90Updated 8 months ago
- Active Directory enumeration from non-domain system.☆118Updated 8 years ago
- PowerShell No Agent Hunting☆110Updated 7 years ago
- Materials of Workshop presented at DEFCON 25☆107Updated 8 years ago
- This script runs several security checks and makes modifications (with your permission) to your Active Directory domain to improve it's s…☆45Updated 9 years ago
- PowerShell Scripting Expert repository, contains template code for security and administrative scripting, largely derived through taking …☆86Updated 6 years ago
- ☆53Updated 7 years ago
- Repository for my ATT&CK analysis research.☆70Updated 6 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Updated 8 years ago
- Conveigh is a Windows PowerShell LLMNR/NBNS spoofer detection tool☆97Updated 9 years ago
- Check_ioc is a script to check for various, selectable indicators of compromise on Windows systems via PowerShell and Event Logs. It was …☆80Updated 7 years ago
- This is a repository from Adam Swan and I's presentation on Windows Logs Zero 2 Hero.☆22Updated 7 years ago
- Sysmon config for both Windows and Linux Devices. Windows one is a bit dated☆56Updated last year