secureworks / dceptLinks
A tool for deploying and detecting use of Active Directory honeytokens
☆507Updated 2 years ago
Alternatives and similar repositories for dcept
Users that are interested in dcept are comparing it to the libraries listed below
Sorting:
- Incident Response Forensic Framework☆600Updated 5 years ago
- PSRecon gathers data from a remote Windows host using PowerShell (v2 or later), organizes the data into folders, hashes all extracted da…☆486Updated 7 years ago
- ☆506Updated 4 years ago
- (extensible) Data Exfiltration Toolkit (DET)☆828Updated 7 years ago
- Next Generation Firewall Audit and Bypass Tool☆264Updated 8 years ago
- Remote forensics meta tool☆467Updated 2 months ago
- Powershell-based Windows Security Auditing Toolbox☆576Updated 6 years ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆453Updated last year
- MozDef: The Mozilla Defense Platform☆68Updated 5 years ago
- DPS' Lightweight Investigation Notebook☆430Updated last year
- The Correlated CVE Vulnerability And Threat Intelligence Database API☆943Updated 4 years ago
- Honeypot Intelligence with Splunk☆254Updated 6 years ago
- RWMC is no longer supported. Please use PowerMemory.☆164Updated 9 years ago
- Malspider is a web spidering framework that detects characteristics of web compromises.☆415Updated 2 years ago
- A Simple QUEry and Report Tool☆142Updated 5 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆634Updated 7 years ago
- Documentation for the GRR Rapid Reponse framework☆303Updated 8 months ago
- dionaea low interaction honeypot (forked from dionaea.carnivore.it)☆153Updated 9 years ago
- Configuration guidance for implementing Pass-the-Hash mitigations. #nsacyber☆199Updated 8 years ago
- A tool for security professionals to access and interact with remote Microsoft Windows based systems.☆432Updated 7 years ago
- A PowerShell TCP/IP swiss army knife.☆569Updated 8 years ago
- Exploit the credentials present in files and memory☆840Updated 2 years ago
- "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security …☆1,013Updated 5 years ago
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆369Updated 6 years ago
- This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …☆815Updated 11 months ago
- Advanced Sysmon ATT&CK configuration focusing on Detecting the Most Techniques per Data source in MITRE ATT&CK, Provide Visibility into …☆803Updated last year
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆384Updated 11 months ago
- ☆141Updated last year
- Web interface for the Volatility Memory Forensics Framework☆260Updated 7 years ago
- ☆306Updated 8 years ago