- hawk
- Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
- Active Directory PingCastle Auditor
- B2Response
- CentOS7_Lockdown
- Comae-Toolkit-Dumpit
- DARKSURGEON
- GetVulnerableGPO
- hardentools
- HELK
- honeybits
- hunt-detect-prevent
- LogonTracer
- malcom
- MalwLess
- mcafee
- PassFiltEx
- PcapXray
- pcode2code
- PS-WindowsForensics
- re_lab
- sinkhole
- sof-elk
- spy
- Sysmon
- SysMonster
- ThreatHunter-Playbook
- ToolAnalysisResultSheet
- win10-secure-baseline-gpo
- WindowsEnum
- Zeek