tomwechsler / Threat_Hunting_with_PowerShell
Security even with a small budget - there is no excuse!
☆17Updated last year
Related projects: ⓘ
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated last year
- The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…☆35Updated last year
- PowerShell scripts for fast Windows Event Collector configuration with Palantir toolset☆21Updated 2 years ago
- A tiny tool to identify and remediate common misconfigurations in Active Directory Certificate Services☆16Updated last month
- ☆25Updated 3 weeks ago
- A WDAC configuration repository with the sole intention of enriching MDE☆27Updated last year
- ☆48Updated last year
- ☆22Updated this week
- ASR Configurator, Essentials and Atomic Testing☆32Updated 3 weeks ago
- A tiny tool built to help AD Admins safely utilize the Protected Users group.☆16Updated 3 weeks ago
- Active Directory Group Policy analyzer☆13Updated 5 years ago
- AppLocker hardening policies☆24Updated 6 years ago
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆14Updated last year
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆73Updated last month
- ☆13Updated last year
- ☆40Updated last year
- ☆45Updated last year
- ☆65Updated last year
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆93Updated 2 months ago
- Azure AD Incident Response☆24Updated 2 years ago
- ☆13Updated this week
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆15Updated last year
- ☆29Updated last year
- PowerShell tool to triage systems☆12Updated last year
- ☆13Updated 2 years ago
- Automation around Entra ID☆33Updated 2 months ago
- ☆47Updated 4 years ago
- ☆68Updated last year
- Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.☆9Updated 4 years ago
- ☆40Updated 11 months ago