291 Open source projects that are alternatives of or similar to Logontracer

Provides various Windows Server Active Directory (AD) security-focused reports.

Active Directory ACL Visualizer and Explorer - who's really Domain Admin?

You didn't think I'd go and leave the blue team out, right?

Test Blue Team detections without running any attack.

ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.

This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to spreadsheets.

Find and notify users in your Active Directory with weak passwords

Timeline of Active Directory changes with replication metadata

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

AD Security Intrusion Detection System

This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.

Bloodhound for Blue and Purple Teams

Signature base for my scanner tools

Yara Ruleset for scanning Linux servers for shells, spamming, phishing and other webserver baddies

AutomatedLab is a provisioning solution and framework that lets you deploy complex labs on HyperV and Azure with simple PowerShell scripts. It supports all Windows operating systems from 2008 R2 to 2019, some Linux distributions and various products like AD, Exchange, PKI, IIS, etc.

A collection of electronic hacker magazines carefully curated over the years from multiple sources

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

This repository is created only for infosec professionals whom work day to day basis to equip ourself with uptodate skillset, We can daily contribute daily one hour for day to day tasks and work on problem statements daily, Please contribute by providing problem statements and solutions

Event Trace Log file parser in pure Python

Smart OSINT collection of common IOC types

DLL Password Filter Implant with Exfiltration Capabilities

Automagically extract forensic timeline from volatile memory dump

Your Everyday Threat Intelligence

A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会

Tools for the Computer Incident Response Team 💻

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

ASP.Net MVC with Active Directory Authentication using Owin Middleware

Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.

A toolkit of AD specific health checks that you can run in your environment to ensure your Active Directory is running optimally.

Collaborative forensic timeline analysis

The goal of this repository is to document the most common techniques to bypass AppLocker.

A PowerShell module to deploy active directory decoy objects.

Starter kit to quickly create ASP.NET Core with On-Premises Active Directory Authentication.

All-in-one bundle of MISP, TheHive and Cortex

Active Directory provider for HashiCorp Terraform (experimental)

A port of Kaitai to the Hiew hex editor

RedSnarf is a pen-testing / red-teaming tool for Windows environments

Public PowerShell script gallery for ScriptRunner.

PS / Bash / Python / Other scripts For FUN!

A curated list of awesome forensic analysis tools and resources

An Incident Response tool that visualizes historic process execution evidence (based on Event ID 4688 - Process Creation Event) in a tree view.

A repository of tools for pentesting of restricted and isolated environments.

LDAP auth plugin for verdaccio

A collection of scripts I've written to help red and blue teams with malware persistence techniques.

Malcom - Malware Communications Analyzer

Beagle is an incident response and digital forensics tool which transforms security logs and data into graphs.

Multi Vagrant environment with Active Directory

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

CIRCL system forensic tools or a jumble of tools to support forensic

The DNN Azure Active Directory Provider is an Authentication provider for DNN Platform (formerly DotNetNuke) that uses Azure Active Directory OAuth2 authentication to authenticate users.

📇 Digital Forensics Artifact Repository (forensicanalysis edition)

Snoop — инструмент разведки на основе открытых данных (OSINT world)

Monitoring GitLab for sensitive data shared publicly

Indicator Extractor

PowerShell functions and scripts (Azure, Active Directory, SCCM, SCSM, Exchange, O365, ...)

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Python API Client for Cortex

VirusTotal Wanna Be - Now with 100% more Hipster