Alternatives and similar repositories for forensic-tools:

Users that are interested in forensic-tools are comparing it to the libraries listed below

• ChrisAD / ads-payload
  Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…
  ☆52Updated 10 months ago
• r4wd3r / ADPWN
  Useful Windows and AD tools
  ☆15Updated 3 years ago
• singe / wpa3_brute
  Simple mods to wpa_supplicant to allow more efficient online bruting
  ☆18Updated 5 years ago
• pwmoore / CorelanExploitTutorials
  My solutions in Python for Corelan's Exploit Writing Tutorials
  ☆12Updated 8 years ago
• gquere / PulseSecure_session_hijacking
  Attacking and defending web and VPN session hijacking in Pulse Secure Connect
  ☆14Updated 5 years ago
• tevora-threat / SecSmash
  ☆17Updated 7 years ago
• rvrsh3ll / CrypoCurrencyPowerShell
  ☆30Updated 6 years ago
• Hestat / intel-sharing
  Repository of Information sharing on threats and indicators
  ☆12Updated 4 years ago
• matterpreter / misc
  Collection of things I've written on pentests to make life easier.
  ☆16Updated 5 years ago
• ElevenPaths / PESTO
  ☆26Updated 4 years ago
• Powershell-Offense / Post-Exploitation
  \ PowerAvails Powershell /
  ☆12Updated 6 years ago
• curi0usJack / psfire
  simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe
  ☆14Updated 7 years ago
• k-vitali / operation-shadowhammer
  This repository contains various files linked to Operation Shadowhammer as it was originally discovered by Kaspersky Team.
  ☆12Updated 5 years ago
• vletoux / Bluekeep-scanner
  BlueKeep powershell scanner (based on c# code)
  ☆38Updated 5 years ago
• G0ldenGunSec / wmiServSessEnum
  .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems
  ☆33Updated 5 years ago
• markgamache / GPOwn
  Do the unexpected with AD GPO processing
  ☆9Updated 5 years ago
• DiabloHorn / qiba_poc
  Quantum Insert Backdoor POC
  ☆11Updated 7 years ago
• MNEMO-CERT / PoC--CVE-2019-10149_Exim
  PoC for CVE-2019-10149, this vulnerability could be xploited betwen 4-87 to 4.91 version of Exim server.
  ☆14Updated 5 years ago
• DanielRTeixeira / SMBLorisAttack
  ☆11Updated 7 years ago
• r00tpgp / http-pulse_ssl_vpn.nse
  Nmap NSE script to detect Pulse Secure SSL VPN file disclosure CVE-2019-11510
  ☆18Updated 5 years ago
• sisoc-tokyo / mimikatz_detection
  ☆12Updated 6 years ago
• dsnezhkov / h53
  A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place
  ☆10Updated 6 years ago
• fox-it / signed-phishing-email
  ☆11Updated 6 years ago
• ThunderGunExpress / CustomStager
  ☆16Updated 6 years ago
• SecurityJosh / MuteSysmon
  A PowerShell script to prevent Sysmon from writing its events
  ☆15Updated 4 years ago
• johnjohnsp1 / MimkatzCollider
  Mimikatz HashClash
  ☆12Updated 9 years ago
• Z3R0th-13 / Profit
  Simple PowerShell enumeration script to look for interesting files
  ☆10Updated 5 years ago
• jfmaes / Parsers
  parsers to make life easier
  ☆12Updated 4 years ago
• peterpt / pipe_finder
  Automated script to search in SMB protocol for availables pipe names
  ☆22Updated 6 years ago
• HuskyHacks / RustyTokenManipulation
  just manipulatin these here tokens yes sir nothing weird
  ☆22Updated 2 years ago