MHaggis / ASRGEN
ASR Configurator, Essentials and Atomic Testing
☆36Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for ASRGEN
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆100Updated 4 months ago
- ☆40Updated last year
- ☆40Updated 3 years ago
- ☆49Updated last year
- Sentinel Logic Apps/Playbooks to automate enrichment, incident analysis and more.☆76Updated 3 months ago
- Hunting Queries for Defender ATP☆73Updated last week
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆10Updated last year
- ☆22Updated 2 years ago
- Repository that contains random short projects like write-ups, PowerShell scripts, and more.☆26Updated 2 weeks ago
- ☆43Updated last month
- Presentations from Conferences☆26Updated 2 months ago
- Baseline a Windows System against LOLBAS☆25Updated 6 months ago
- Azure function to insert MISP data in to Azure Sentinel☆30Updated 2 years ago
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆22Updated 3 months ago
- Reportly is an AzureAD user activity report tool.☆89Updated last year
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆79Updated 3 months ago
- Table of AD and Azure assets and whether they belong to Tier Zero☆25Updated last year
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆47Updated 10 months ago
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆15Updated last year
- M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.☆112Updated this week
- Slides of my public talks☆46Updated 11 months ago
- Simple PowerShell script to enable process scanning with Yara.☆90Updated 2 years ago
- A WDAC configuration repository with the sole intention of enriching MDE☆27Updated last year
- A tool to identify and remediate common misconfigurations in Active Directory Certificate Services☆14Updated 10 months ago
- General Content☆20Updated 4 months ago
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆31Updated 6 months ago
- MS Graph Commands and Tools for Blue Teamers☆49Updated last year
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆14Updated last year
- ResearchDev - XDR & SIEM Detection☆62Updated last week