HardeningKitty and Windows Hardening Settings
HardeningKitty - Checks and hardens your Windows configuration
Practical Windows Forensics Training
Awesome list of keywords and artifacts for Threat Hunting sessions
Awesome Incident Response
A PowerShell module to deploy active directory decoy objects.
Purpleteam scripts simulation & Detection - trigger events for SOC detections
ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.
A collection of scripts I've written to help red and blue teams with malware persistence techniques.
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. It will automatically generate a userlist from the domain which excludes accounts that are expired, disabled locked out, or within 1 lockout attempt.
Detect webshells dropped on Microsoft Exchange servers exploited through "proxylogon" group of vulnerabilites (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065)
Provides various Windows Server Active Directory (AD) security-focused reports.
Collection of PowerShell functinos and scripts a Blue Teamer might use
This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…
PowerShell script to terminate protected processes such as anti-malware and EDRs.
🧰 Various PowerShell scripts for security, sysadmins, blue and red teams👫🏼
Comprehensive suite of PowerShell and VBScript tools automates Active Directory tasks, advances forensic analysis, and simplifies script creation. Designed for managing Windows Servers and workstations, these tools ensure accuracy, efficiency, security, scalability, and adaptability, optimizing daily operations, performance, and system compliance.
Simple powershell script to find living off land binaries and scripts on a system.
Add a description, image, and links to the blueteam topic page so that developers can more easily learn about it.
To associate your repository with the blueteam topic, visit your repo's landing page and select "manage topics."