clr2of8 / PowerShellForInfoSec

Related projects ⓘ

Alternatives and complementary repositories for PowerShellForInfoSec

• clr2of8 / TellTail
  A tool to display Windows Event logs as they happen.
  ☆12Updated last year
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆60Updated 8 months ago
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 6 months ago
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆93Updated last year
• techspence / ADeleginator
  A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory
  ☆152Updated 2 months ago
• Tanguy-Boisset / bloodhound-automation
  Automatically run and populate a new instance of BH CE
  ☆54Updated last month
• IppSec / PowerSiem
  ☆114Updated 7 months ago
• TrimarcJake / BlueTuxedo
  A tiny tool to find and fix common misconfigurations in Active Directory-integrated DNS
  ☆99Updated last month
• reprise99 / 4688-sysmon
  ☆49Updated last year
• LuemmelSec / Custom-BloodHound-Queries
  ☆173Updated 9 months ago
• tsale / EDR-Telemetry-Website
  ☆72Updated this week
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆106Updated 5 months ago
• csandker / Azure-AccessPermissions
  ☆105Updated last year
• zaneGittins / Huntress
  PowerShell tool to triage systems
  ☆12Updated last year
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆79Updated 3 months ago
• doredry / TokenFinder
  Tool to extract powerful tokens from Office desktop apps memory
  ☆67Updated 8 months ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆89Updated 3 years ago
• DefensiveOrigins / DO-LAB
  ☆43Updated last month
• TrimarcJake / PowerPUG
  A tiny tool built to help AD Admins safely utilize the Protected Users group.
  ☆28Updated last week
• Trimarc / Locksmith
  A tiny tool to identify and remediate common misconfigurations in Active Directory Certificate Services
  ☆20Updated 2 weeks ago
• 0xJs / domain_audit
  Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.
  ☆156Updated last month
• rootsecdev / Presentations
  Presentations from Conferences
  ☆26Updated 2 months ago
• kha1ifuzz / AD-Config-Automation
  Scripts and piece of codes used for Active Directory configuration
  ☆81Updated last year
• biffalo / easy-wins-endpoint-defense
  Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…
  ☆38Updated 7 months ago
• improsec / ImproHound
  Identify the attack paths in BloodHound breaking your AD tiering
  ☆310Updated 2 years ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆65Updated last year
• sans-blue-team / DNS-Exfiltrate
  ☆24Updated last year
• Trimarc / Invoke-TrimarcADChecks
  The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…
  ☆35Updated last year
• LuemmelSec / Client-Checker
  ☆169Updated last month