Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.
☆145Feb 16, 2026Updated last month
Alternatives and similar repositories for AppLockerInspector
Users that are interested in AppLockerInspector are comparing it to the libraries listed below
Sorting:
- SCEP request tool for AD CS and Intune☆74Oct 24, 2025Updated 4 months ago
- Ludus role for deploying a Mythic Teamserver onto Linux servers☆23Mar 16, 2025Updated last year
- rust port of pspy with support for process monitoring over dbus☆36Jan 4, 2026Updated 2 months ago
- Group Policy Objects manipulation and exploitation framework☆296Dec 7, 2025Updated 3 months ago
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆61Apr 13, 2025Updated 11 months ago
- Active Directory delegation management tool☆452Oct 25, 2025Updated 4 months ago
- PowerShell implementation for AD CS☆115Mar 2, 2026Updated 2 weeks ago
- gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…☆335Mar 11, 2026Updated last week
- CVE-2025-59501 POC code☆25Nov 20, 2025Updated 3 months ago
- ScriptSentry finds misconfigured and dangerous logon scripts.☆626Feb 16, 2026Updated last month
- A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.☆1,488Feb 18, 2026Updated last month
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆316Feb 16, 2026Updated last month
- This project contains a **test executable** specifically designed to trigger incidents in **Microsoft Defender for Endpoint (MDE)**. It…☆14Jul 20, 2025Updated 8 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆371Jan 29, 2026Updated last month
- A tiny tool built to help AD Admins tame the Protected Users group.☆140Sep 8, 2025Updated 6 months ago
- A simple tool to identify WDS servers in Active Directory☆32Aug 25, 2025Updated 6 months ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆276Feb 5, 2026Updated last month
- A C# utility for interacting with SCCM☆683Aug 20, 2025Updated 7 months ago
- Tool to aid in dumping LSASS process remotely☆42Sep 23, 2025Updated 5 months ago
- simple C# portscanner - written for playing around with Metasploit's Execute-Assembly☆10Jul 1, 2023Updated 2 years ago
- A cross-platform tool to find traces of old SIDs remaining in LDAP objects of the Active Directory☆25Jun 29, 2025Updated 8 months ago
- An Ansible collection that installs an SCCM deployment with optional configurations.☆101Dec 8, 2025Updated 3 months ago
- ☆287Aug 14, 2025Updated 7 months ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆190Jan 11, 2026Updated 2 months ago
- An ADCS honeypot to catch attackers in your internal network.☆326Jun 27, 2024Updated last year
- PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains…☆990Oct 15, 2025Updated 5 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆167Oct 21, 2025Updated 4 months ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆424Sep 29, 2025Updated 5 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆261Feb 21, 2025Updated last year
- GolenGMSA tool for working with GMSA passwords☆171Aug 21, 2025Updated 6 months ago
- ☆58Feb 16, 2025Updated last year
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆37Oct 1, 2025Updated 5 months ago
- ☆96Aug 3, 2025Updated 7 months ago
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 4 years ago
- Execute shellcode via ASPNET compiler☆62Oct 2, 2025Updated 5 months ago
- A Moodle Scanner☆43Nov 16, 2024Updated last year
- Living Under the Land on Linux ~ Bsides Belfast/Vienna 2025☆38Nov 22, 2025Updated 3 months ago
- Phantom is project created to perform loading and executing .NET assemblies directly in memory within an IIS environment running in full‑…☆68Mar 10, 2026Updated last week
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆385Jan 23, 2025Updated last year