Alternatives and similar repositories for clarion

Users that are interested in clarion are comparing it to the libraries listed below

• CompliantSec / M365SAT
  Microsoft 365 Security Assessment Tool - A Easy-To-Use Microsoft 365 Security Assessment Tool
  ☆113Updated 3 weeks ago
• techspence / ADeleginator
  A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory
  ☆206Updated 7 months ago
• jakehildreth / BlueTuxedo
  A tiny tool built to find and fix common misconfigurations in Active Directory-integrated DNS
  ☆113Updated 3 months ago
• microsoft / EventLogExpert
  ☆185Updated 3 weeks ago
• CompassSecurity / EntraFalcon
  A lightweight PowerShell tool for assessing the security posture of Microsoft Entra ID environments. It helps identify privileged object…
  ☆82Updated last week
• merill / microsoft-info
  Repository hosting a static list of Microsoft First party apps and Graph permissions that's updated daily
  ☆131Updated last week
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆106Updated 5 months ago
• jakehildreth / PowerPUG
  A tiny tool built to help AD Admins tame the Protected Users group.
  ☆46Updated 3 months ago
• reprise99 / 4688-sysmon
  ☆62Updated last year
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆111Updated 9 months ago
• PwC-IR / Office-365-Extractor
  The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
  ☆263Updated 3 years ago
• THEVER1TAS / sysmon-config
  Sysmon configuration file templates with advanced event tracing and blocking
  ☆40Updated last month
• LETHAL-FORENSICS / Microsoft-Analyzer-Suite
  A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
  ☆465Updated this week
• zh54321 / EntraTokenAid
  A pure PowerShell solution for Entra OAuth authentication, enabling easy retrieval of access and refresh tokens
  ☆96Updated last month
• randomaccess3 / Awesome-BEC
  Repository of attack and defensive information for Business Email Compromise investigations
  ☆251Updated last week
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆91Updated 11 months ago
• SpecterOps / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆223Updated 3 months ago
• vectra-ai-research / MAAD-AF
  MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
  ☆396Updated 7 months ago
• HuskyHacks / cazadora
  Simple hunting script for suspicious M365 OAuth Apps
  ☆280Updated 3 months ago
• mvelazc0 / msInvader
  M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…
  ☆292Updated 2 months ago
• LearningKijo / MDEtester
  MDE Tester is designed to help testing various features in Microsoft Defender for Endpoint.
  ☆188Updated last year
• jflieben / assortedFunctionsV2
  ☆75Updated last month
• MicrosoftDocs / defender-docs
  ☆70Updated this week
• f-bader / TokenTacticsV2
  A fork of the great TokenTactics with support for CAE and token endpoint v2
  ☆290Updated 2 months ago
• mon-csirt / active-directory-security
  The "Monash Enterprise Access Model" (MEAM) is a model for tiering Active Directory that builds heavily on the Microsoft Enterprise Acces…
  ☆100Updated 7 months ago
• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆194Updated 4 months ago
• anthonws / MDATP_PoSh_Scripts
  ☆48Updated 10 months ago
• joeavanzato / RetrievIR
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆102Updated 8 months ago
• dstreefkerk / PowerShell
  My PowerShell Stuff
  ☆46Updated this week
• blackhillsinfosec / audit-inspector
  Manage Windows auditing policies.
  ☆35Updated last month