KITT - An Open Source PowerShell O365 Business Email Compromise Investigation Tool
☆116Jun 23, 2020Updated 6 years ago
Alternatives and similar repositories for KITT-O365-Tool
Users that are interested in KITT-O365-Tool are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Free's up wasted Microsoft Office 365 Licenses☆11Mar 29, 2022Updated 4 years ago
- A scanner to detect the use of stolen FireEye red team tools☆20Dec 18, 2020Updated 5 years ago
- ☆334Dec 8, 2022Updated 3 years ago
- A C# tool to send emails through Outlook from the command line or in memory☆32Jun 17, 2020Updated 6 years ago
- Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 en…☆1,430Dec 27, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆12Oct 29, 2025Updated 8 months ago
- Powershell Based tool for gathering information related to O365 intrusions and potential Breaches☆945Jun 10, 2026Updated 3 weeks ago
- dankAlerts is powered by Sysmon and Memes. Would you notice if a suspicious process was recorded in the event log?☆18Jun 24, 2020Updated 6 years ago
- OSSEM Modular☆27Jun 29, 2020Updated 6 years ago
- SQL scripts for querying event logs☆22Jul 12, 2017Updated 8 years ago
- The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…☆281Feb 2, 2021Updated 5 years ago
- Random scripts☆62Mar 9, 2026Updated 3 months ago
- adding a backdooruser using win32api☆80Sep 3, 2020Updated 5 years ago
- Quick script to build host or investigation timelines using Carbon Black Response☆12Sep 25, 2018Updated 7 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities☆202Nov 8, 2020Updated 5 years ago
- A way to manage Group Policy Preferences through PowerShell☆39Jan 25, 2026Updated 5 months ago
- A bash script to check for updates on macOS and notify users via JAMF Helper windows.☆20Aug 18, 2022Updated 3 years ago
- ☆152Jun 5, 2024Updated 2 years ago
- Powershell / C# based cross platform forensic framework based for live incident response☆23Jul 5, 2020Updated 5 years ago
- Red Team C2 Infrastructure built in AWS using Ansible!☆233Oct 4, 2020Updated 5 years ago
- Creates an ATT&CK Navigator map of an Adversary Emulation Plan☆17Sep 4, 2021Updated 4 years ago
- The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)☆270Feb 3, 2022Updated 4 years ago
- ☆25Jun 28, 2019Updated 7 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Gunslinger is used to hunt for Magecart sites using URLScan's API☆31Mar 15, 2022Updated 4 years ago
- The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)☆160Mar 27, 2023Updated 3 years ago
- ☆19Sep 21, 2020Updated 5 years ago
- Bloodhound Reporting for Blue and Purple Teams☆1,296Nov 15, 2025Updated 7 months ago
- Contact: CRT@crowdstrike.com☆754Apr 27, 2023Updated 3 years ago
- Extracts Azure authentication tokens from PowerShell process minidumps.☆25May 20, 2023Updated 3 years ago
- ☆17Aug 24, 2020Updated 5 years ago
- ☆12Jan 25, 2023Updated 3 years ago
- PowerShell Wrapper for the Auvik API☆13Aug 19, 2022Updated 3 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆66Sep 13, 2023Updated 2 years ago
- Tree-like cmdlets for Active Directory principals!☆30Apr 17, 2026Updated 2 months ago
- Detect possible sysmon logging bypasses given a specific configuration☆111Dec 26, 2018Updated 7 years ago
- automated penetration toolkit☆12Jul 9, 2016Updated 9 years ago
- ☆12Mar 24, 2018Updated 8 years ago
- POC for .NET mssql client for accessing database data through beacon☆64Sep 12, 2023Updated 2 years ago
- ☆229Nov 9, 2023Updated 2 years ago