littl3field / Audix
Audix is a PowerShell tool to quickly configure the Windows Event Audit Policies for security monitoring
☆117Updated 5 years ago
Alternatives and similar repositories for Audix:
Users that are interested in Audix are comparing it to the libraries listed below
- PowerShell based Active Directory Honey User Account Management with Universal Dashboards☆141Updated 5 years ago
- PowerShell script to find 'vulnerable' security-related GPOs that should be hardended☆197Updated 6 years ago
- Some security related PowerShell scripts I developed.☆79Updated 6 years ago
- Dashboarding and Tooling front-end for PowerShell Empire using PowerShell Universal Dashboard☆104Updated 5 years ago
- Find accounts using common and default passwords in Active Directory.☆66Updated 5 years ago
- Purple Team Security☆74Updated 2 years ago
- List of PowerShell commands and commandlets that should be in your Powershel watchlist☆37Updated 3 years ago
- A PowerShell script that aims to have a fully configured domain built in under 10 minutes, but also apply security configuration and hard…☆198Updated 3 years ago
- Sysmon Tools for PowerShell☆229Updated 6 years ago
- Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity☆90Updated 3 years ago
- A collection of Windows software baseline notes with corresponding Windows Defender Application Control (WDAC) policies☆62Updated last year
- Scripts for comparing Microsoft Windows compliance with the ASD 1709 & Office 2016 Hardening Guides☆159Updated 5 years ago
- Smb Scanner from PingCastle☆123Updated 5 years ago
- ☆256Updated 3 months ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆38Updated 2 years ago
- A MITRE Caldera plugin written in Python 3 used to convert Red Canary Atomic Red Team Tests to MITRE Caldera Stockpile YAML ability files…☆71Updated 3 years ago
- This repository was created to aid in the deployment/maintenance of the Sysmon service on a large number of computers.☆82Updated 2 years ago
- Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password hash to…☆177Updated last year
- My conference presentations☆66Updated last year
- Builds a hashmap of AD NTLM hashes/usernames and iterates through a second list of hashes checking for the existence of each entry in the…☆77Updated 4 years ago
- PowerShell Script for Windows Server Compliance / Security Configuration Audit☆61Updated 8 years ago
- The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)☆159Updated last year
- Detect possible sysmon logging bypasses given a specific configuration☆107Updated 6 years ago
- Sysmon configuration☆66Updated 6 years ago
- PowerShell No Agent Hunting☆110Updated 6 years ago
- ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.☆135Updated 5 years ago
- A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data☆39Updated 4 years ago
- Powershell collection designed to assist in Threat Hunting Windows systems.☆27Updated 6 years ago
- Active Directory permissions (ACL/ACE) auditing tools☆148Updated 7 years ago
- ☆111Updated 5 years ago