secureworks / dcept
A tool for deploying and detecting use of Active Directory honeytokens
☆503Updated 2 years ago
Alternatives and similar repositories for dcept:
Users that are interested in dcept are comparing it to the libraries listed below
- PSRecon gathers data from a remote Windows host using PowerShell (v2 or later), organizes the data into folders, hashes all extracted da…☆484Updated 7 years ago
- Incident Response Forensic Framework☆599Updated 5 years ago
- ☆506Updated 4 years ago
- CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across al…☆650Updated 5 years ago
- Honeypot Intelligence with Splunk☆254Updated 6 years ago
- (extensible) Data Exfiltration Toolkit (DET)☆827Updated 7 years ago
- This script communicates with the Nessus API in an attempt to help with automating scans. Depending on the flag issued with the script, y…☆215Updated 5 years ago
- OpenSOC Apache Hadoop Code☆575Updated 4 years ago
- Powershell-based Windows Security Auditing Toolbox☆576Updated 6 years ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆449Updated last year
- dionaea low interaction honeypot (forked from dionaea.carnivore.it)☆155Updated 9 years ago
- MozDef: The Mozilla Defense Platform☆67Updated 4 years ago
- DPS' Lightweight Investigation Notebook☆427Updated last year
- Auto Domain Admin and Network Exploitation.☆298Updated 7 years ago
- Next Generation Firewall Audit and Bypass Tool☆263Updated 7 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆631Updated 7 years ago
- DEPRECATED - USE v3 (bearded-avenger)☆227Updated 7 years ago
- A Simple QUEry and Report Tool☆142Updated 5 years ago
- Kvasir: Penetration Test Data Management☆426Updated 6 years ago
- Currently not updated for WMIEvent module...☆262Updated 8 years ago
- Automated, Collection, and Enrichment Platform☆324Updated 5 years ago
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆463Updated 6 years ago
- CRITs - Collaborative Research Into Threats☆897Updated 5 years ago
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆367Updated 6 years ago
- A PowerShell TCP/IP swiss army knife.☆562Updated 7 years ago
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆382Updated 7 months ago
- Laika BOSS: Object Scanning System☆744Updated last month
- RWMC is no longer supported. Please use PowerMemory.☆165Updated 9 years ago
- Configuration guidance for implementing Pass-the-Hash mitigations. #nsacyber☆198Updated 8 years ago
- Web interface for the Volatility Memory Forensics Framework☆260Updated 7 years ago