Alternatives and similar repositories for DEFCON-KQL-KUNG-FU-22:

Users that are interested in DEFCON-KQL-KUNG-FU-22 are comparing it to the libraries listed below

• improsec / 2Cloudz
  ☆22Updated 2 years ago
• DefensiveOrigins / DO-LAB
  ☆46Updated 2 weeks ago
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆16Updated 8 months ago
• chihebchebbi / Azure-Sentinel-Hive-Playbook
  Send High & New Incidents to The Hive incident management Platform
  ☆18Updated 4 years ago
• Blumira / Kerberoast-Detection
  Kerberoast Detection Script
  ☆30Updated 3 months ago
• sleeptok3n / RoleCrawl
  ☆20Updated last year
• bittib010 / AjourVolAutolity
  A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.
  ☆16Updated 2 months ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆25Updated last year
• akapv / Sysmon_to_AdvancedHunting_KQL
  ☆10Updated 4 years ago
• RossGeerlings / PlasmaPup
  PlasmaPup is designed to help central and departmental IT personnel understand their exposures in Active Directory by showing which accou…
  ☆27Updated 10 months ago
• HillsyCyberSec / CheatSheet
  ☆10Updated 6 months ago
• jorgeorchilles / presentations
  Slides and materials for conference presentations
  ☆11Updated last year
• AlrikRr / ActiveDirectory_Lab
  Active DIrectory Lab for Pentesting Practice
  ☆24Updated 2 years ago
• lkarlslund / azureimposter
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆25Updated 2 years ago
• sdcampbell / Nessusploitable
  Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv
  ☆39Updated last year
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆46Updated 2 years ago
• NVISOsecurity / nviso-cti
  ☆41Updated 10 months ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆50Updated last year
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated last year
• threatexpress / threat-mitigation
  Threat Mitigation Strategies
  ☆25Updated last year
• securityjoes / Crowdstrike-Deploy
  The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆22Updated 5 months ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated last year
• jangeisbauer / gundog
  gundog - guided hunting in Microsoft Defender
  ☆52Updated 3 years ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆36Updated 3 months ago
• gladstomych / AHHHZURE
  AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…
  ☆102Updated 9 months ago
• brokensound77 / LoFP
  Living off the False Positive!
  ☆33Updated 2 weeks ago
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 4 years ago
• clr2of8 / TellTail
  A tool to display Windows Event logs as they happen.
  ☆12Updated last year
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆59Updated 2 years ago