Alternatives and similar repositories for WinAWL

Users that are interested in WinAWL are comparing it to the libraries listed below

• SadProcessor / WatchDog
  BloodHound Data Scanner
  ☆45Updated 5 years ago
• mattifestation / WDACPolicies
  A collection of Windows software baseline notes with corresponding Windows Defender Application Control (WDAC) policies
  ☆62Updated last year
• aurel26 / gpocheck
  gpocheck
  ☆30Updated last year
• vletoux / ADSecrets
  Set of ultra technical notes about AD
  ☆18Updated 7 years ago
• darkoperator / Presentations
  Presentation Slides
  ☆26Updated 6 years ago
• secgroundzero / ossem_modular
  OSSEM Modular
  ☆27Updated 5 years ago
• fashionproof / SearchOpenFileShares
  Searches open files shares for password files, database backups, etc. Extend as you see fit
  ☆29Updated 5 years ago
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆53Updated 2 years ago
• CompassSecurity / Readinizer
  Microsoft GPO Readiness Lateral Movement Detection Tool
  ☆16Updated 2 years ago
• mkorman90 / sysmon-config-bypass-finder
  Detect possible sysmon logging bypasses given a specific configuration
  ☆111Updated 6 years ago
• mvelazc0 / PurpleSpray
  PurpleSpray is an adversary simulation tool that executes password spray behavior under different scenarios and conditions with the purpo…
  ☆51Updated 6 years ago
• vletoux / TestAntivirus
  Test if an antivirus is installed via the resolution of the service virtual SID
  ☆56Updated 5 years ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆43Updated 6 years ago
• chrismaddalena / Fox
  A companion tool for BloodHound offering Active Directory statistics and number crunching
  ☆64Updated 7 years ago
• hausec / COMMethodSearcher
  Script that searches through all COM objects for any methods containing a key word of your choosing.
  ☆74Updated 5 years ago
• nettitude / PoshC2_IOCs
  A list of IOCs applicable to PoshC2
  ☆24Updated 5 years ago
• swimlane / PSAttck
  PSAttck is a light-weight framework for the MITRE ATT&CK Framework.
  ☆38Updated 3 years ago
• tasox / LogRM
  LogRM is a post exploitation powershell script which it uses windows event logs to gather information about internal network
  ☆74Updated 6 years ago
• surbo / OVERFLOW
  Microsoft Flow Attack Framework
  ☆23Updated 5 years ago
• cfalta / ADT
  Active Directory Toolkit
  ☆20Updated 6 years ago
• srnsw / xena
  Digital Preservation Software (National Archives of Australia)
  ☆37Updated 14 years ago
• IceMoonHSV / Sim
  C# User Simulation
  ☆32Updated 2 years ago
• vysecurity / ATT-CK_Analysis
  Repository for my ATT&CK analysis research.
  ☆69Updated 6 years ago
• outflanknl / Invoke-Templator
  A PowerShell script to parse the docx/docm file format and update the template location.
  ☆17Updated 5 years ago
• jwillyamz / ezEmu
  See adversary, do adversary: Simple execution of commands for defensive tuning/research (now with more ELF on the shelf)
  ☆104Updated 2 years ago
• dmaasland / mcafee-config-decrypt
  ☆60Updated 5 years ago
• curi0usJack / ADImporter
  Credit to Helge Klein - https://helgeklein.com/blog/2015/02/creating-realistic-test-user-accounts-active-directory/
  ☆69Updated 7 years ago
• DidierStevens / etl2pcapng
  Utility that converts an .etl file containing a Windows network packet capture into .pcapng format.
  ☆46Updated 5 years ago
• threatexpress / invoke-pipeshell
  SMB Named Pipe shell
  ☆69Updated 10 months ago
• threatexpress / threat-mitigation
  Threat Mitigation Strategies
  ☆25Updated last month