davidprowe / BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Activ…
☆1,991Updated last year
Related projects: ⓘ
- A collection of Azure AD/Entra tools for offensive and defensive security purposes☆1,825Updated 2 weeks ago
- PingCastle - Get Active Directory Security at 80% in 20% of the time☆2,282Updated this week
- Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab☆1,974Updated 5 months ago
- ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the…☆1,694Updated 4 years ago
- A tool for checking if MFA is enabled on multiple Microsoft Services☆1,295Updated this week
- Bloodhound Reporting for Blue and Purple Teams☆1,103Updated 3 weeks ago
- a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )☆2,007Updated last month
- VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities a…☆1,361Updated this week
- ☆2,156Updated 11 months ago
- Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red…☆818Updated last month
- Active Directory certificate abuse.☆1,464Updated last month
- A Python based ingestor for BloodHound☆1,894Updated last month
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆1,733Updated 2 months ago
- Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows…☆1,882Updated 2 months ago
- Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)☆1,627Updated 3 weeks ago
- A collection of scripts for assessing Microsoft Azure security☆2,011Updated 3 weeks ago
- Tool for Active Directory Certificate Services enumeration and abuse☆2,317Updated last month
- Six Degrees of Domain Admin☆1,042Updated this week
- Adversary Tactics - PowerShell Training☆1,513Updated 4 years ago
- Windows Events Attack Samples☆2,198Updated last year
- Azure Security Resources and Notes☆1,461Updated 3 months ago
- A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the ac…☆889Updated 6 months ago
- Microsoft signed ActiveDirectory PowerShell module☆827Updated 4 years ago
- PowerShell framework to assess Azure security☆1,088Updated last week
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆2,448Updated last year
- A repository of sysmon configuration modules☆2,621Updated 3 weeks ago
- Automation for internal Windows Penetrationtest / AD-Security☆3,280Updated 7 months ago
- ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the…☆670Updated 2 months ago
- Trying to tame the three-headed dog.☆4,033Updated last week
- A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.☆1,783Updated 2 weeks ago