CompassSecurity / OnPremSecurityBestPractices

Related projects ⓘ

Alternatives and complementary repositories for OnPremSecurityBestPractices

• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆65Updated last year
• p0w3rsh3ll / NetCease
  ☆59Updated 3 years ago
• mon-csirt / active-directory-security
  The "Monash Enterprise Access Model" (MEAM) is a model for tiering Active Directory that builds heavily on the Microsoft Enterprise Acces…
  ☆87Updated last month
• TrimarcJake / PowerPUG
  A tiny tool built to help AD Admins safely utilize the Protected Users group.
  ☆27Updated last week
• soteria-security / ADInspect
  A PowerShell script that automates the security assessment of Microsoft Active Directory environments.
  ☆62Updated 2 years ago
• gkm-automation / AD-Security-Assessment
  Perform general security checks against AD environment
  ☆63Updated 2 years ago
• TrimarcJake / BlueTuxedo
  A tiny tool to find and fix common misconfigurations in Active Directory-integrated DNS
  ☆97Updated last month
• reprise99 / 4688-sysmon
  ☆48Updated last year
• netwrix / PingCastleCloud
  Audit program for AzureAD
  ☆145Updated last year
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆107Updated 3 months ago
• YossiSassi / Get-UserSession
  Query user sessions for the entire domain (Interactive/RDP etc), allowing you to query a Username and see all their logged on sessions, w…
  ☆88Updated 11 months ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆97Updated 2 years ago
• Trimarc / Invoke-TrimarcADChecks
  The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…
  ☆35Updated last year
• WillOram / AzureAD-incident-response
  Notes on responding to security breaches relating to Azure AD
  ☆96Updated 2 years ago
• improsec / Get-bADpasswords
  Get insights into the actual strength and quality of passwords in Active Directory.
  ☆151Updated 4 months ago
• davidprowe / AD_Sec_Tools
  ☆107Updated 5 years ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆89Updated 3 years ago
• canix1 / PIMSCAN
  Tool for creating reports on Entra ID Role Assignments
  ☆86Updated 7 months ago
• DefensiveOrigins / DO-LAB
  ☆43Updated last month
• adrecon / AzureADRecon
  AzureADRecon is a tool which gathers information about the Azure Active Directory and generates a report which can provide a holistic pic…
  ☆188Updated last month
• rootsecdev / Presentations
  Presentations from Conferences
  ☆26Updated 2 months ago
• Kaidja / EntraID
  Automation around Entra ID
  ☆34Updated 4 months ago
• keyboardcrunch / SentinelOne-ATTACK-Queries
  MITRE ATT&CK mapped queries for SentinelOne Deep Visiblity
  ☆86Updated 3 years ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆100Updated 4 months ago
• SpecterOps / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆190Updated this week
• biffalo / easy-wins-endpoint-defense
  Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…
  ☆38Updated 7 months ago
• sap8899 / reportly
  Reportly is an AzureAD user activity report tool.
  ☆89Updated last year
• reprise99 / mddrguidance
  Links and guidance related to the return on mitigation report in the Microsoft Digital Defense Report
  ☆27Updated last year
• jangeisbauer / AdvancedHunting
  Advanced Hunting Queries for Microsoft Security Products
  ☆106Updated last year