davidprowe / AD_Sec_Tools
☆105Updated 5 years ago
Related projects: ⓘ
- ☆58Updated 3 years ago
- Module to update the Krbtgt password☆45Updated 10 months ago
- A collection of Windows software baseline notes with corresponding Windows Defender Application Control (WDAC) policies☆59Updated 9 months ago
- This script validates the most common Conditional Access policies in Microsoft 365.☆9Updated 3 months ago
- A Powershell module that helps you identify AppLocker weaknesses☆159Updated 4 years ago
- ☆47Updated 4 years ago
- Just a bunch of code snippets to identify and remediate common Active Directory Certificate Services issues.☆30Updated 7 months ago
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆86Updated 2 years ago
- Leghorn code for PKI abuse☆31Updated 3 years ago
- ☆73Updated 2 years ago
- BloodHound with a twist of cloud☆72Updated 4 years ago
- Little PowerShell module to extract PowerShell scripts that no longer exists on disk but were run and are still in Event Logs.☆39Updated 3 years ago
- PoSh BloodHound Dog Whisperer☆184Updated last year
- ☆36Updated 5 years ago
- ☆149Updated 3 years ago
- AD Live changes viewer☆35Updated last year
- Build a domain with three quick PowerShell scripts!☆28Updated 4 years ago
- AdmPwd project☆85Updated last year
- The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…☆35Updated last year
- Reportly is an AzureAD user activity report tool.☆88Updated last year
- Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, w…☆87Updated 9 months ago
- Svendsen Tech's PowerShell nmap-like port scanner accepting IPv4 CIDR notation☆51Updated last year
- Audix is a PowerShell tool to quickly configure the Windows Event Audit Policies for security monitoring☆116Updated 4 years ago
- BloodHound Data Scanner☆43Updated 4 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆82Updated last year
- Get insights into the actual strength and quality of passwords in Active Directory.☆150Updated 2 months ago
- Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.☆50Updated last year
- Pushes Sysmon Configs☆89Updated 3 years ago
- List of PowerShell commands and commandlets that should be in your Powershel watchlist☆37Updated 3 years ago
- Kerberoast Detection Script☆30Updated last year