Alternatives and similar repositories for ASRGEN:

Users that are interested in ASRGEN are comparing it to the libraries listed below

• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆105Updated 4 months ago
• JeffMichelmore / MDEKit
  ☆41Updated last year
• msdirtbag / azurevelo
  Velociraptor Server hosted in Azure App Service
  ☆17Updated this week
• secgroundzero / KQL_Reference_Manual
  ☆41Updated 3 years ago
• 0xAnalyst / DefenderATPQueries
  Hunting Queries for Defender ATP
  ☆81Updated 2 weeks ago
• DefensiveOrigins / DO-LAB
  ☆47Updated 3 weeks ago
• mr-r3b00t / KQL
  This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet
  ☆12Updated 2 months ago
• bittib010 / AjourVolAutolity
  A project that aims to automate Volatility3 at scale with the use of cloud strength and the power of KQL inside ADX.
  ☆16Updated 4 months ago
• securityjoes / Crowdstrike-Deploy
  The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆23Updated last week
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆26Updated last year
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆27Updated last year
• xg5-simon / MS-Graph-BlueTeam
  MS Graph Commands and Tools for Blue Teamers
  ☆49Updated last year
• zolderio / misp-to-sentinel
  Azure function to insert MISP data in to Azure Sentinel
  ☆32Updated 2 years ago
• Neo23x0 / Talks
  Slides of my public talks
  ☆55Updated last year
• rootsecdev / Presentations
  Presentations from Conferences
  ☆29Updated 7 months ago
• jangeisbauer / gundog
  gundog - guided hunting in Microsoft Defender
  ☆52Updated 4 years ago
• sap8899 / reportly
  Reportly is an AzureAD user activity report tool.
  ☆92Updated last year
• FalconForceTeam / FalconForge
  This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…
  ☆16Updated 2 years ago
• improsec / 2Cloudz
  ☆24Updated 3 years ago
• Ocel0tSec / AzureDump
  Powershell Script to enumerate AzureAD and output good data
  ☆14Updated last year
• SecurityAura / Aura-Research
  Repo that hold write-ups of various research projects I did and/or overall InfoSec things I investigated/researched.
  ☆20Updated 4 months ago
• eshlomo1 / Azure-AD-Incident-Response
  Azure AD Incident Response
  ☆25Updated 3 years ago
• olafhartong / WDACme
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆28Updated 2 years ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆51Updated last year
• mdecrevoisier / Windows-auditing-baseline
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆54Updated 3 months ago
• tsale / EDR-Telemetry-Website
  ☆74Updated last month
• oloruntolaallbert / MS-Attack-Range
  An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…
  ☆41Updated this week
• AttacktheSOC / Azure-SecOps
  Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)
  ☆66Updated 3 weeks ago
• cyb3rmik3 / Hunting-Lists
  A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
  ☆34Updated 9 months ago
• Bert-JanP / Sentinel-Automation
  Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.
  ☆92Updated 3 weeks ago