ANSSI-FR / ORADAZLinks
Outil de récupération automatique des données AZure / Automated tool for dumping Azure configuration data
☆20Updated last week
Alternatives and similar repositories for ORADAZ
Users that are interested in ORADAZ are comparing it to the libraries listed below
Sorting:
- VirtualGHOST Detection Tool☆91Updated last year
- Guide journalisation Microsoft☆60Updated 10 months ago
- ☆74Updated 2 months ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆111Updated 9 months ago
- Bruteforce DPAPI encrypted MasterKey File from Windows Credentials Manager☆20Updated 5 months ago
- A list of RMMs designed to be used in automation to build alerts☆110Updated last month
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆82Updated last year
- Identify the accounts most vulnerable to dictionary attacks☆119Updated 2 months ago
- Finding ClickFix and FakeCAPTCHA like it's 1999☆38Updated this week
- 🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.☆74Updated last month
- orc2timeline extracts and analyzes artifacts contained in archives generated with DFIR-ORC.exe to create a timeline from them☆33Updated last month
- DFIR ORC PARSER PROJECT☆25Updated 3 months ago
- A tiny tool built to find and fix common misconfigurations in Active Directory-integrated DNS☆115Updated 4 months ago
- Enumerate Microsoft Entra ID (Azure AD) fast☆91Updated last month
- ThreatSeeker: Threat Hunting via Windows Event Logs☆121Updated 2 years ago
- ASR Configurator, Essentials and Atomic Testing☆42Updated last month
- The LOLBins CTI-Driven (Living-Off-the-Land Binaries Cyber Threat Intelligence Driven) is a project that aims to help cyber defenders und…☆124Updated last year
- Tool for creating reports on Entra ID Role Assignments☆93Updated last year
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆251Updated last year
- The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆24Updated last week
- Interactive simulation of a fictional ransomware group's dashboard☆12Updated 8 months ago
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆12Updated 3 months ago
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆210Updated 8 months ago
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆88Updated 10 months ago
- Simulation of Akira Ransomware with Invoke-AtomicTest☆16Updated 10 months ago
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆102Updated 9 months ago
- ☆97Updated 3 months ago
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆106Updated 5 months ago
- A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.☆155Updated last month
- A repository to share publicly available Velociraptor detection content☆170Updated this week