FalconForceTeam/FalconForge external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

FalconForceTeam/FalconForge

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/FalconForceTeam/FalconForge)

Close

FalconForceTeam / FalconForgeView on GitHubMore

• External links
• Readme badge

This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deploying a repository of use-cases for the Sentinel and Microsoft 365 Defender products.

☆18Mar 10, 2023Updated 3 years ago

Alternatives and similar repositories for FalconForge

Users that are interested in FalconForge are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• FalconForceTeam / KQLAnalyzer

  View on GitHub
  REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
  ☆51Sep 22, 2025Updated 6 months ago
• elastic / sans-dfir-2022

  View on GitHub
  Repo with supporting material for the talk titled "Cracking the Beacon: Automating the extraction of implant configurations"
  ☆11Feb 6, 2025Updated last year
• microsoft / AzDetectSuite

  View on GitHub
  A collection of ARM-based detections for Azure/AzureAD based TTPs
  ☆90Dec 12, 2023Updated 2 years ago
• Azure / MDEASM-Solutions

  View on GitHub
  Solutions developed by the MDEASM Customer Experience Engineering (CxE) Go-To Production (GTP) team for Azure MDEASM
  ☆29Feb 3, 2025Updated last year
• piraija / import-custom-bloodhound-queries

  View on GitHub
  Import custom queries into BloodHound CE from a legacy BloodHound JSON file.
  ☆10Mar 22, 2024Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• Intellisec-Solutions / Microsoft-Sentinel-SIGMA-Rules-Workbook

  View on GitHub
  ☆12Jul 15, 2022Updated 3 years ago
• EuroLeaps / scc-connectors

  View on GitHub
  Google Cloud Security Command Center to Azure Sentinel Connector
  ☆19Jul 15, 2023Updated 2 years ago
• threat-punter / detection-as-code-example

  View on GitHub
  A POC to implement Detection-as-Code with Terraform and Sumo Logic.
  ☆31Jul 27, 2023Updated 2 years ago
• cventour / PoSH

  View on GitHub
  Random Powershell scripts
  ☆13Feb 13, 2024Updated 2 years ago
• SecureHats / validate-detections

  View on GitHub
  GitHub action for validating Microsoft Sentinel detection rules
  ☆14May 22, 2023Updated 2 years ago
• ml58158 / AzureOpenAI-Playbook

  View on GitHub
  Azure OpenAI Playbook created for Microsoft Sentinel
  ☆13May 2, 2024Updated last year
• jsa2 / kql

  View on GitHub
  KQL for Azure Resource Manager and AppID search
  ☆23Aug 15, 2024Updated last year
• themittenmac / threat-hunting-macos-book

  View on GitHub
  A companion Github repo for the book - Threat Hunting macOS by Jaron Bradley
  ☆20Jul 26, 2025Updated 8 months ago
• kumarvna / terraform-azurerm-firewall

  View on GitHub
  Terraform Module to create fully stateful Azure firewall as a service with built-in high availability.
  ☆15Oct 29, 2022Updated 3 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• Sebmolendijk / mcas-labs

  View on GitHub
  Microsoft Cloud App Security labs
  ☆14Dec 17, 2018Updated 7 years ago
• siriussecurity / dettectinator

  View on GitHub
  Dettectinator - The Python library to your DeTT&CT YAML files.
  ☆118Jan 22, 2026Updated 2 months ago
• msdirtbag / azurevelo

  View on GitHub
  Velociraptor Server hosted in Azure App Service
  ☆59Jun 4, 2025Updated 10 months ago
• OTRF / OSSEM-CDM

  View on GitHub
  OSSEM Common Data Model
  ☆56Sep 20, 2022Updated 3 years ago
• Yamato-Security / suzaku-rules

  View on GitHub
  ☆11Dec 9, 2025Updated 4 months ago
• ep3p / Sentinel_KQL

  View on GitHub
  In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…
  ☆138Mar 31, 2026Updated last week
• gajus / semantic-url-parser

  View on GitHub
  Extracts content information from known URL patterns.
  ☆19Feb 4, 2026Updated 2 months ago
• olafhartong / WDACme

  View on GitHub
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆30Jun 18, 2025Updated 9 months ago
• eshlomo1 / Azure-AD-Incident-Response

  View on GitHub
  Azure AD Incident Response
  ☆28Oct 8, 2021Updated 4 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• ACE-Responder / ace-proctree

  View on GitHub
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Mar 1, 2023Updated 3 years ago
• mercedes-benz / ansible-for-splunk-cloud

  View on GitHub
  Ansible playbooks for configuring and managing Splunk Cloud deployments with the Admin Config Service (ACS) API
  ☆29Mar 26, 2026Updated 2 weeks ago
• center-for-threat-informed-defense / summiting-the-pyramid

  View on GitHub
  Summiting the Pyramid is a research project focused on engineering cyber analytics to make adversary evasion more difficult. The research…
  ☆57Mar 2, 2026Updated last month
• JustinGrote / MicrosoftMvp

  View on GitHub
  PowerShell Module for Submitting MVP Activities
  ☆20Feb 22, 2026Updated last month
• NateHutch365 / MDEValidator

  View on GitHub
  ☆41Mar 23, 2026Updated 2 weeks ago
• Cyb3r-Monk / ACCD

  View on GitHub
  Active C&C Detector
  ☆156Oct 5, 2023Updated 2 years ago
• AI-redteam / sherl0ck

  View on GitHub
  Search an entire directory of .eml email files for a word or phrase... in over 100 languages.
  ☆12Feb 28, 2023Updated 3 years ago
• blockadeio / cloud_node

  View on GitHub
  Python-based cloud node for local use
  ☆11Mar 7, 2018Updated 8 years ago
• blackhatethicalhacking / HiddenEye

  View on GitHub
  Modern Phishing Tool With Advanced Functionality [ Android-Support-Available ]
  ☆31Oct 10, 2019Updated 6 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• panther-labs / panther_analysis_tool

  View on GitHub
  Command line tool for working with Panther rules and policies
  ☆48Apr 1, 2026Updated last week
• pwnedlabs / pwncloudos

  View on GitHub
  PWNCLOUDOS
  ☆44Mar 27, 2026Updated 2 weeks ago
• mvelazc0 / attack2jira

  View on GitHub
  attack2jira automates the process of standing up a Jira environment that can be used to track and measure ATT&CK coverage
  ☆115Mar 26, 2023Updated 3 years ago
• bitnesswise / shodan-postman-collection

  View on GitHub
  Postman collection to interact with the Shodan API
  ☆25Nov 8, 2023Updated 2 years ago
• ncerny / docker-idrac

  View on GitHub
  iDRAC 5 and 6 web interface and VNC proxy
  ☆10Aug 24, 2019Updated 6 years ago
• slyd0g / SwiftLiverpool

  View on GitHub
  Enumerate Location Services using CoreLocation API on macOS
  ☆18Dec 2, 2021Updated 4 years ago
• gf13579 / splunk_app_for_easm

  View on GitHub
  ☆10Sep 12, 2024Updated last year