Alternatives and similar repositories for WinAWL:

Users that are interested in WinAWL are comparing it to the libraries listed below

• SadProcessor / WatchDog
  BloodHound Data Scanner
  ☆45Updated 4 years ago
• vletoux / ADSecrets
  Set of ultra technical notes about AD
  ☆18Updated 6 years ago
• CompassSecurity / Readinizer
  Microsoft GPO Readiness Lateral Movement Detection Tool
  ☆16Updated 2 years ago
• l0ss / Get-GPTrashfire
  B-Sides CBR 2018 talk about group policy and Grouper
  ☆39Updated 5 years ago
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆51Updated last year
• aurel26 / gpocheck
  gpocheck
  ☆30Updated 8 months ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆43Updated 6 years ago
• secgroundzero / ossem_modular
  OSSEM Modular
  ☆27Updated 4 years ago
• vletoux / TestAntivirus
  Test if an antivirus is installed via the resolution of the service virtual SID
  ☆56Updated 5 years ago
• hausec / COMMethodSearcher
  Script that searches through all COM objects for any methods containing a key word of your choosing.
  ☆73Updated 5 years ago
• michdu / WhatAmIMissing
  Get all AD objects which are hidden from you
  ☆18Updated 7 years ago
• fashionproof / SearchOpenFileShares
  Searches open files shares for password files, database backups, etc. Extend as you see fit
  ☆29Updated 5 years ago
• redcanaryco / cb-response-smb1-utility
  A simple utility to check the status of and/or disable SMBv1 on Windows system via Cb Response's Live Response functionality.
  ☆15Updated 5 years ago
• mattifestation / WindowsEventLogMetadata
  Event metadata collected across all manifest-based ETW providers on Window 10 1903
  ☆31Updated 5 years ago
• HarmJ0y / Invoke-ADDefense
  Defensive-oriented Active Directory enumeration
  ☆23Updated 9 years ago
• OneLogicalMyth / Invoke-GPPCSE
  Obtains a list of GPOs based on known Client Side Extensions (CSE) that normally contain passwords
  ☆33Updated 5 years ago
• cfalta / ADT
  Active Directory Toolkit
  ☆20Updated 6 years ago
• airman604 / schtask_now
  ☆17Updated 6 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆32Updated 2 years ago
• ajackal / ir_scripts
  incident response scripts
  ☆19Updated 6 years ago
• chrismaddalena / Fox
  A companion tool for BloodHound offering Active Directory statistics and number crunching
  ☆65Updated 6 years ago
• surbo / OVERFLOW
  Microsoft Flow Attack Framework
  ☆23Updated 5 years ago
• darkoperator / Presentations
  Presentation Slides
  ☆27Updated 5 years ago
• tasox / LogRM
  LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network
  ☆73Updated 5 years ago
• mkorman90 / sysmon-config-bypass-finder
  Detect possible sysmon logging bypasses given a specific configuration
  ☆108Updated 6 years ago
• stvemillertime / Absolutely-Positively-NOT-Hacking-Back-with-Pcap
  Streaming Unexpected Network Byte Sequences with High Probability of Blue Screening or Otherwise Crashing Attacker Command-and-Control No…
  ☆22Updated 5 years ago
• OTRF / bloodhound-notebook
  BloodHound Cypher Queries Ported to a Jupyter Notebook
  ☆53Updated 4 years ago
• dmaasland / mcafee-config-decrypt
  ☆60Updated 5 years ago
• matthastings / PSalander
  ☆52Updated 6 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 4 years ago