alpha-08 / ADInsight
This tool can gather a lot of info without any defender alerts. It is useful for Penetration testers, SOC Analysts, System administrators depends how they use it
☆28Updated 7 months ago
Alternatives and similar repositories for ADInsight:
Users that are interested in ADInsight are comparing it to the libraries listed below
- This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…☆24Updated 4 months ago
- ResearchDev - XDR & SIEM Detection☆64Updated 2 weeks ago
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆71Updated 2 months ago
- Scripts and piece of codes used for Active Directory configuration☆84Updated 2 years ago
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Updated 11 months ago
- Hunting Queries for Defender ATP☆81Updated 2 weeks ago
- Scripts and a short guide for using them to tier an Active Directory. Made for BSides Copenhagen 2024☆37Updated 4 months ago
- Presentations from Conferences☆28Updated 6 months ago
- Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)☆62Updated last week
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆166Updated 6 months ago
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆100Updated 7 months ago
- msuserstats is a comprehensive Powershell tool to manage accounts from Microsoft Entra ID and Active Directory. It supports: a unified vi…☆40Updated 3 weeks ago
- ☆22Updated last month
- CarbonBlack EDR detection rules and response actions☆71Updated 6 months ago
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆22Updated 7 months ago
- This repository contains a comprehensive testing designed for evaluating the performance and resilience of Endpoint Detection and Respons…☆52Updated 5 months ago
- ☆74Updated last week
- Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.☆90Updated last month
- ☆42Updated 11 months ago
- Repo that hold write-ups of various research projects I did and/or overall InfoSec things I investigated/researched.☆20Updated 2 months ago
- Security Scripts and Sources for daily usage.☆56Updated 2 weeks ago
- Contains compiled binaries of Volatility☆33Updated 2 months ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆52Updated 2 months ago
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆14Updated last year
- The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…☆25Updated last week
- Packet Analysis on Steroids☆10Updated 2 years ago
- ☆61Updated last year
- ☆41Updated last year
- A Python script for analyzing email files to extract IP addresses, URLs, headers, and attachments, with functionalities for defanging IPs…☆20Updated 5 months ago