cea-sec / gmsad

Related projects: ⓘ

• cea-sec / openwec
  An implementation of a Windows Event Collector server running on GNU/Linux.
  ☆46Updated this week
• jborean93 / dpapi-ng
  Python DPAPI NG Decryptor for non-Windows Platforms
  ☆53Updated last year
• FrankMcGovern / Hidden-Vendor-Security-Advisories
  This repo contains a list of vendors that hide their security advisories, alerts, notices, vulnerabilities, and more behind either a payw…
  ☆31Updated 4 months ago
• YossiSassi / SEC-T_21-One-Liners-Powershell
  Code & other materials from SEC-T 2022 talk "When SysAdmin & Hacker Unite: 21 One-Liners to make you convert from bash to Powershell"
  ☆17Updated 2 years ago
• commial / LiveDiffAD
  AD Live changes viewer
  ☆35Updated last year
• TrimarcJake / adcs-snippets
  Just a bunch of code snippets to identify and remediate common Active Directory Certificate Services issues.
  ☆30Updated 7 months ago
• j91321 / ansible-role-sysmon
  Ansible role for installing Sysmon with popular config files included.
  ☆24Updated last year
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆89Updated 3 years ago
• nturley3 / zeek-kerberos-haters-guide
  Kerberos Haters Guide to Zeek Threat Hunting
  ☆24Updated 2 years ago
• vu-ls / applywdac
  ☆22Updated 10 months ago
• DFIR-ORC / dfir-orc-config
  Configurations for DFIR ORC
  ☆22Updated 5 months ago
• mdecrevoisier / Windows-WEC-server_auto-deploy
  PowerShell scripts for fast Windows Event Collector configuration with Palantir toolset
  ☆21Updated 2 years ago
• CompassSecurity / Readinizer
  Microsoft GPO Readiness Lateral Movement Detection Tool
  ☆15Updated last year
• darkoperator / vscode-sysmon
  Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.
  ☆50Updated last year
• pbssubhash / Py-Ran
  Ransomware Simulator for Red/Blue teams to test their defences.
  ☆18Updated 2 years ago
• dwmetz / QuickPcap
  A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.
  ☆40Updated last year
• DCScoder / ESXiTri
  ESXi Cyber Security Incident Response Script
  ☆19Updated 2 weeks ago
• nmantani / PS-TrustedDocuments
  PS-TrustedDocuments: PowerShell script to handle information on trusted documents for Microsoft Office
  ☆33Updated last year
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆72Updated 2 years ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆32Updated 3 weeks ago
• NextronSystems / evtx-baseline
  A repository hosting example goodware evtx logs containing sample software installation and basic user interaction
  ☆66Updated 9 months ago
• ScarredMonk / PopulateActiveDirectory
  Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …
  ☆28Updated 2 years ago
• DidierStevens / etl2pcapng
  Utility that converts an .etl file containing a Windows network packet capture into .pcapng format.
  ☆46Updated 4 years ago
• ANSSI-FR / DFIR4vSphere
  Powershell module for VMWare vSphere forensics
  ☆138Updated last year
• ANSSI-FR / ORADAZ
  Outil de récupération automatique des données AZure / Automated tool for dumping Azure configuration data
  ☆10Updated last month
• huntandhackett / Antignis
  Source code and examples for Antignis
  ☆36Updated last year
• 3CORESec / Automata
  Automatic detection engineering technical state compliance
  ☆49Updated 2 months ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆93Updated 2 months ago
• SygniaLabs / BackupKeyManager
  ☆11Updated 2 months ago
• polylogyx / PolyMon
  ☆15Updated this week