WatchAD
GoodHound
| WatchAD | GoodHound | |
|---|---|---|
| 1 | 2 | |
| 1,214 | 438 | |
| - | - | |
| 10.0 | 0.0 | |
| about 1 year ago | about 2 years ago | |
| Python | Python | |
| GNU General Public License v3.0 only | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
WatchAD
GoodHound
-
Dealing with large BloodHound datasets
Name Description Url BloodHound BloodHound GUI https://github.com/BloodHoundAD/BloodHound/ PlumHound Generate a report with actions to resolve the security flaws in the Active Directory configuration https://github.com/DefensiveOrigins/PlumHound/ GoodHound GoodHound operationalises Bloodhound by determining the busiest paths to high value targets and creating actionable output to prioritise remediation of attack paths. https://github.com/idnahacks/GoodHound/ BlueHound Tool that helps blue teams pinpoint the security issues that actually matter. By combining information about user permissions, network access and unpatched vulnerabilities, BlueHound reveals the paths attackers would take if they were inside your network. https://github.com/zeronetworks/BlueHound/
- GoodHound - Using Bloodhound as a defender - prioritise which attack paths to fix first.
What are some alternatives?
http-request-smuggling - HTTP Request Smuggling Detection Tool
Keylogger - Get Keyboard,Mouse,ScreenShot,Microphone Inputs from Target Computer and Send to your Mail.
aws-cloudsaga - AWS CloudSaga - Simulate security events in AWS
APT-Hunter - APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
python-evtx - Pure Python parser for Windows Event Log files (.evtx)
UltimateAppLockerByPassList - The goal of this repository is to document the most common techniques to bypass AppLocker.
msprobe - Finding all things on-prem Microsoft for password spraying and enumeration.
ansible-ad-inventory - Ansible Active Directory Inventory script
DumpsterFire - "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security events. Easily create custom event chains for Blue- & Red Team drills and sensor / alert mapping. Red Teams can create decoy incidents, distractions, and lures to support and scale their operations. Build event sequences ("narratives") to simulate realistic scenarios and generate corresponding network and filesystem artifacts.
LOLBAS - Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
Coercer - A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
SlackPirate - Slack Enumeration and Extraction Tool - extract sensitive information from a Slack Workspace