MicrosoftDocs/security external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

MicrosoftDocs/security

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/MicrosoftDocs/security)

Close

MicrosoftDocs / securityView on GitHubMore

• External links
• Readme badge

Public repo to sync with security-pr

☆248Mar 11, 2026Updated last week

Alternatives and similar repositories for security

Users that are interested in security are comparing it to the libraries listed below

• microsoft / ConditionalAccessforZeroTrustResources

  View on GitHub
  ConditionalAccessforZeroTrustResources holding resources for Azure AD CA guidance for Zero Trust
  ☆201Apr 2, 2024Updated last year
• MicrosoftDocs / SecurityBenchmarks

  View on GitHub
  Supplemental information and resources for the Security Benchmark documentation available at https://docs.microsoft.com/azure/security/be…
  ☆490Oct 10, 2023Updated 2 years ago
• center-for-threat-informed-defense / security-stack-mappings

  View on GitHub
  🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is k…
  ☆387Apr 3, 2024Updated last year
• maysarax / SOC

  View on GitHub
  ☆20Aug 4, 2019Updated 6 years ago
• Bert-JanP / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,661Mar 9, 2026Updated last week
• workoho / Entra-Tiering-Security-Model

  View on GitHub
  Implement a powerful Tiering Security Model in Microsoft Entra for your Cloud Administrator identities using Azure Automation.
  ☆51Mar 11, 2026Updated last week
• cisagov / ScubaGear

  View on GitHub
  Automation to assess the state of your M365 tenant against CISA's baselines
  ☆2,488Mar 12, 2026Updated last week
• Cloud-Architekt / AzureAD-Attack-Defense

  View on GitHub
  This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and …
  ☆2,478Dec 31, 2025Updated 2 months ago
• microsoft / msrgamut

  View on GitHub
  MSR Gamut: A Design Probe to Understand How Data Scientists Understand Machine Learning Models
  ☆16Updated this week
• microsoft / ActiveDirectoryDSC.Reverse

  View on GitHub
  ReverseDSC Orchestrator for ActiveDirectory
  ☆21Jun 12, 2023Updated 2 years ago
• martinsohn / CIS-Controls

  View on GitHub
  ☆19Nov 23, 2022Updated 3 years ago
• guardsight / gsvsoc_cirt-playbook-battle-cards

  View on GitHub
  Cyber Incident Response Team Playbook Battle Cards
  ☆424May 10, 2024Updated last year
• KustoKing / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Detections for Microsoft Sentinel and Microsoft 365 Defender
  ☆21Nov 15, 2024Updated last year
• Fortigi / ConditionalAccess

  View on GitHub
  ☆21Mar 8, 2021Updated 5 years ago
• Azure / Microsoft-Defender-for-Cloud

  View on GitHub
  Welcome to the Microsoft Defender for Cloud community repository
  ☆1,885Updated this week
• reprise99 / mddrguidance

  View on GitHub
  Links and guidance related to the return on mitigation report in the Microsoft Digital Defense Report
  ☆28Oct 10, 2023Updated 2 years ago
• AzureAD / Azure-AD-Incident-Response-PowerShell-Module

  View on GitHub
  The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…
  ☆451Jun 16, 2023Updated 2 years ago
• Azure / cloud-for-sovereignty-policy-portfolio

  View on GitHub
  The Microsoft Cloud for Sovereignty Policy Portfolio's Policy Initiatives aid in customizing deployments to reduce the time needed to aud…
  ☆32Feb 26, 2025Updated last year
• ThreatIntelligenceLab / collection-cybersecurity-papers

  View on GitHub
  A massive collection of Cybersecurity papers, guides and reports.
  ☆10Jan 3, 2025Updated last year
• microsoft / sentinel-as-code

  View on GitHub
  ☆23Oct 13, 2025Updated 5 months ago
• Cloud-Architekt / EntraOps

  View on GitHub
  Community project to classify, identify and protect your privileges based on Enterprise Access Model (EAM)
  ☆220Updated this week
• ugurkocde / TenantBaseline

  View on GitHub
  Stop Microsoft 365 configuration drift before it becomes a breach
  ☆66Mar 11, 2026Updated last week
• MicrosoftDocs / entra-docs

  View on GitHub
  This is the public repo for Microsoft Entra documentation
  ☆173Updated this week
• Azure / Azure-Sentinel

  View on GitHub
  Cloud-native SIEM for intelligent security analytics for your entire enterprise.
  ☆5,534Updated this week
• SecurityBagel / CMMC-Bagel

  View on GitHub
  compliance assessment and POA&M management for CMMC/NIST 800-171A
  ☆110Jan 2, 2025Updated last year
• eshlomo1 / Microsoft-Sentinel-SecOps

  View on GitHub
  Microsoft Sentinel SOC Operations
  ☆264Jul 10, 2024Updated last year
• LearningKijo / ResearchDev

  View on GitHub
  ResearchDev - XDR & SIEM Detection
  ☆66Apr 16, 2025Updated 11 months ago
• microsoft / Get-ExchangeBuildNumber

  View on GitHub
  You can search build numbers of Exchange Server.
  ☆20Jul 2, 2025Updated 8 months ago
• AzureAD / AzureADAssessment

  View on GitHub
  Tooling for assessing an Azure AD tenant state and configuration
  ☆831Jun 12, 2024Updated last year
• MicrosoftDocs / CloudAppSecurityDocs

  View on GitHub
  Public repo for CloudAppSecurityDocs-pr
  ☆114Jan 8, 2025Updated last year
• tomwechsler / Active_Directory_with_Windows_Server_2022

  View on GitHub
  Everything about Active Directory in a hybrid infrastructure!
  ☆26Dec 31, 2022Updated 3 years ago
• ItzHerbie / KQL

  View on GitHub
  Detection rules and threat hunting queries in Defender XDR and Azure Sentinel
  ☆16Mar 13, 2026Updated last week
• nicolonsky / ITDR

  View on GitHub
  Collection of Microsoft Identity Threat Detection and Response resources.
  ☆52Mar 1, 2026Updated 2 weeks ago
• alexverboon / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Microsoft Defender, Microsoft Sentinel
  ☆196Updated this week
• lawndoc / AdvancedHuntingQueries

  View on GitHub
  Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant.
  ☆133Feb 10, 2026Updated last month
• JulianHayward / AzADServicePrincipalInsights

  View on GitHub
  Insights and change tracking on Microsoft Entra ID Service Principals (Enterprise Applications, Applications and Managed Identities)
  ☆248Apr 30, 2025Updated 10 months ago
• jonathanristo / CTEMMM

  View on GitHub
  Continuous Threat Exposure Management Maturity Model (CTEMMM)
  ☆29Feb 6, 2026Updated last month
• j0eyv / ConditionalAccessBaseline

  View on GitHub
  ☆267Feb 14, 2026Updated last month
• Cyb3r-Monk / Threat-Hunting-and-Detection

  View on GitHub
  Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
  ☆804Jan 14, 2026Updated 2 months ago