Alternatives and similar repositories for WTF-WFP

Users that are interested in WTF-WFP are comparing it to the libraries listed below

• MotiBa / AppLocker
  AppLocker hardening policies
  ☆25Updated 6 years ago
• airbus-cert / ntTraceControl
  Powershell Event Tracing Toolbox
  ☆75Updated 3 years ago
• jborean93 / PSDetour
  Windows Detour Hooking in PowerShell
  ☆82Updated last year
• MathildeVenault / SysMainView
  This tool is the result of a reverse engineering process of the Windows service called SysMain. Time to interact with the prefetch files …
  ☆31Updated 4 years ago
• nccgroup / mimikatz-detector-condrv
  The Console Monitor Driver is a KMDF kernel-mode filter driver that captures certain Fast I/O operations (input and output) that is sent …
  ☆39Updated 2 years ago
• canix1 / SDDL-Converter
  Tool to convert SDDL to readable text
  ☆40Updated 7 years ago
• mattifestation / WDACPolicies
  A collection of Windows software baseline notes with corresponding Windows Defender Application Control (WDAC) policies
  ☆62Updated last year
• jonny-jhnson / MSFT_DriverBlockList
  Repository of Microsoft Driver Block Lists based off of OS-builds
  ☆39Updated last year
• hotnops / COM_Mapper
  A tool to create COM class/interface relationships in neo4j
  ☆50Updated 2 years ago
• RemiEscourrou / PowerShellMisc
  ☆35Updated 2 years ago
• mtth-bfft / winsddl
  Windows Security Descriptor Definition Language (SDDL) parser and formatter
  ☆16Updated 5 years ago
• kacos2000 / WinEDB
  Windows.EDB Browser
  ☆57Updated 2 years ago
• Harvester57 / CodeIntegrity-DriverBlocklist
  ☆20Updated 3 weeks ago
• MichaelGrafnetter / active-directory-firewall
  Active Directory Firewall
  ☆72Updated last week
• pwndizzle / com-research
  Research into COM
  ☆19Updated 5 years ago
• PSSecTools / Krbtgt
  Module to update the Krbtgt password
  ☆47Updated last year
• WildByDesign / ACLViewer
  ACL Viewer for Windows
  ☆126Updated last month
• GreyCorbel / admpwd
  AdmPwd project
  ☆87Updated 2 years ago
• SygniaLabs / BackupKeyManager
  ☆12Updated 11 months ago
• jonny-jhnson / LDAPMon
  ☆45Updated last year
• idnahacks / NetCeasePlusPlus
  Takes the original idea of NetCease and adds functionality
  ☆24Updated 3 years ago
• jakehildreth / adcs-snippets
  Just a bunch of code snippets to identify and remediate common Active Directory Certificate Services issues.
  ☆33Updated last year
• Trimarc / Invoke-TrimarcADChecks
  The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…
  ☆54Updated last year
• commial / LiveDiffAD
  AD Live changes viewer
  ☆36Updated 2 years ago
• SadProcessor / EzETW
  Cmdlets for capturing Windows Events
  ☆14Updated 3 years ago
• jborean93 / LocalKdc
  Info on how to use Kerberos KDC on a non-domain joined host
  ☆47Updated 10 months ago
• OneScripter / WmiExec
  Execute Windows commands remotely and capture output using only WMI and PowerShell (not remoting).
  ☆63Updated 11 months ago
• RemiEscourrou / Invoke-Leghorn
  Leghorn code for PKI abuse
  ☆32Updated 4 years ago
• laciKE / EsetLogParser
  Python script for parsing ESET (NOD32) virlog.dat file.
  ☆15Updated 7 years ago
• nasbench / procmon-malware-analysis-filters
  Repository containing malware analysis filters for the Windows SysInternals' - Process Monitor tool
  ☆17Updated 4 years ago