HardeningKitty and Windows Hardening Settings
HardeningKitty - Checks and hardens your Windows configuration
Practical Windows Forensics Training
Awesome list of keywords and artifacts for Threat Hunting sessions
Awesome Incident Response
A PowerShell module to deploy active directory decoy objects.
Purpleteam scripts simulation & Detection - trigger events for SOC detections
ThreatHunt is a PowerShell repository that allows you to train your threat hunting skills.
A collection of scripts I've written to help red and blue teams with malware persistence techniques.
Provides various Windows Server Active Directory (AD) security-focused reports.
Detect webshells dropped on Microsoft Exchange servers exploited through "proxylogon" group of vulnerabilites (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, CVE-2021-27065)
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. It will automatically generate a userlist from the domain which excludes accounts that are expired, disabled locked out, or within 1 lockout attempt.
Collection of PowerShell functinos and scripts a Blue Teamer might use
This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding a…
🧰 Various PowerShell scripts for security, sysadmins, blue and red teams👫🏼
PowerShell script to terminate protected processes such as anti-malware and EDRs.
PowerShell and VBScript tools for automating Active Directory workflows,securing system operations, and supporting forensic procedures. Designed for Windows Servers and workstations, these solutions improve accuracy, scalability, and compliance—enhancing performance, reliability, and cybersecurity posture across enterprise IT environments worldwide
Simple powershell script to find living off land binaries and scripts on a system.
Add a description, image, and links to the blueteam topic page so that developers can more easily learn about it.
To associate your repository with the blueteam topic, visit your repo's landing page and select "manage topics."