MHaggis / ASRGEN
ASR Configurator, Essentials and Atomic Testing
☆35Updated last week
Related projects ⓘ
Alternatives and complementary repositories for ASRGEN
- ☆48Updated last year
- ☆40Updated last year
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆99Updated 3 months ago
- ☆40Updated 3 years ago
- ☆43Updated 3 weeks ago
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆10Updated last year
- Sigma detection rules for hunting with the threathunting-keywords project☆47Updated last week
- Sentinel Logic Apps/Playbooks to automate enrichment, incident analysis and more.☆75Updated 2 months ago
- M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.☆111Updated 6 months ago
- Hunting Queries for Defender ATP☆72Updated this week
- MS Graph Commands and Tools for Blue Teamers☆48Updated 11 months ago
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆31Updated 6 months ago
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆22Updated 2 months ago
- ☆22Updated 2 years ago
- General Content☆20Updated 3 months ago
- Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.☆45Updated 10 months ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆36Updated this week
- Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations☆78Updated 3 months ago
- Azure function to insert MISP data in to Azure Sentinel☆30Updated 2 years ago
- Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…☆44Updated 7 months ago
- A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.☆34Updated 3 months ago
- Slides of my public talks☆46Updated 10 months ago
- Repository that contains random short projects like write-ups, PowerShell scripts, and more.☆26Updated this week
- Collection of scripts/resources/ideas for attack surface reduction and additional logging to enable better threat hunting on Windows endp…☆38Updated 7 months ago
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆15Updated last year
- ResearchDev - XDR & SIEM Detection☆62Updated 3 weeks ago
- Presentations from Conferences☆26Updated last month
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆14Updated last year
- Providing Azure pipelines to create an infrastructure and run Atomic tests.☆50Updated last year