mr-r3b00t / ExchangeMarch2021IOCHunt

Related projects ⓘ

Alternatives and complementary repositories for ExchangeMarch2021IOCHunt

• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated last year
• cnotin / m365_groups_enum
  Enumerate Microsoft 365 Groups in a tenant with their metadata
  ☆52Updated 3 years ago
• p0w3rsh3ll / NetCease
  ☆58Updated 3 years ago
• YossiSassi / Get-UserSession
  Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, w…
  ☆88Updated 11 months ago
• improsec / ImprosecPasswordFilter
  ☆16Updated 2 years ago
• dwmetz / QuickPcap
  A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.
  ☆40Updated 2 years ago
• TrimarcJake / adcs-snippets
  Just a bunch of code snippets to identify and remediate common Active Directory Certificate Services issues.
  ☆31Updated 9 months ago
• DefensiveOrigins / DomainBuildScripts
  Build a domain with three quick PowerShell scripts!
  ☆28Updated 4 years ago
• Spicy-Toaster / ActiveDirectory-Tiering
  Scripts and a short guide for using them to tier an Active Directory. Made for BSides Copenhagen 2024
  ☆36Updated last week
• neKuehn / MADs
  General scripts that gather information out of Active Directory
  ☆16Updated 2 years ago
• sdcampbell / Nessusploitable
  Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv
  ☆38Updated last year
• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆25Updated 10 months ago
• rgeoghan / app-password-persistence
  Using Microsoft 365 App Passwords for persistence
  ☆23Updated 4 years ago
• ZephrFish / NessusPreFlight
  Nessus Preflight(NPF) Check for local and remote systems. Essentially sets three registry keys and restarts a service to allow nessus to …
  ☆16Updated 4 years ago
• aaroneg / PS-CreateADLabs
  Create a windows Active Directory lab
  ☆13Updated 5 years ago
• jangeisbauer / gundog
  gundog - guided hunting in Microsoft Defender
  ☆52Updated 3 years ago
• PwnDefend / NetworkAttackMap
  ☆36Updated 2 years ago
• pbssubhash / Py-Ran
  Ransomware Simulator for Red/Blue teams to test their defences.
  ☆19Updated 2 years ago
• paragonsec / HiveNightmare-Checker
  A PowerShell script that checks for dangerous ACLs on system hives and shadows
  ☆28Updated 3 years ago
• spyx / SysmonGrahp
  ☆14Updated 3 years ago
• Trimarc / Invoke-TrimarcADChecks
  The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…
  ☆35Updated last year
• vu-ls / applywdac
  ☆22Updated last year
• nyxgeek / weakpass_generator
  generates weak passwords based on current date
  ☆40Updated 4 months ago
• PlumHound / PlumHound-Tasks
  Community Tasks/Plans for PlumHound Queueing
  ☆23Updated last year
• gtworek / SysvolExplorer
  Active Directory Group Policy analyzer
  ☆13Updated 5 years ago
• ScarredMonk / PopulateActiveDirectory
  Powershell script to build active directory forest and populate AD with random AD objects including AD users objects, computers objects, …
  ☆28Updated 2 years ago
• ryanmrestivo / blue-team
  Some portable tools, some YARA, some Python, and a little bit of love. Not all of these tools can be used in incident response. Use PEs…
  ☆33Updated 11 months ago
• threatexpress / threat-mitigation
  Threat Mitigation Strategies
  ☆25Updated last year
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆11Updated 4 years ago
• soteria-security / HAFNIUM-IOC
  A PowerShell script to identify indicators of exploitation of CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-26865
  ☆21Updated 3 years ago