Alternatives and similar repositories for azure-security-survival-kit:

Users that are interested in azure-security-survival-kit are comparing it to the libraries listed below

• O3-Cyber / AzureADRoleMonitor
  ☆45Updated 2 weeks ago
• microsoft / AzDetectSuite
  A collection of ARM-based detections for Azure/AzureAD based TTPs
  ☆84Updated last year
• jsa2 / AADAppAudit
  Microsoft Entra ID App Audit Solution (AADAppAudit)
  ☆83Updated 6 months ago
• trustoncloud / threatmodel-for-azure-storage
  ThreatModel for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based app…
  ☆57Updated last year
• SecureHats / Sentinel-playground
  Solution to deploy a Sentinel playground demo environment
  ☆57Updated last year
• Cloud-Architekt / AzureSentinel
  Sharing my KQL queries for Azure Sentinel
  ☆162Updated this week
• emiliensocchi / azure-tiering
  Azure administrative tiering based on known attack paths
  ☆63Updated this week
• invictus-ir / aws-cheatsheet
  A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.
  ☆68Updated 10 months ago
• f-bader / EntraIDAuditLogToMicrosoftGraph
  A list of Entra ID (Azure AD) Audit event names and the corresponding Microsoft Graph Request Uri
  ☆27Updated 5 months ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆91Updated last year
• f-bader / SentinelPesterFramework
  Check you Sentinel environment using Pester infrastructure tests
  ☆29Updated last year
• invictus-ir / Invictus-training
  Repository with supporting materials for Invictus Academy/Training
  ☆42Updated 2 months ago
• Cloud-Architekt / AzurePrivilegedIAM
  Docs and samples for privileged identity and access management in Microsoft Azure and Microsoft Entra.
  ☆149Updated 2 weeks ago
• jsa2 / EAST
  Extensible Azure Security Tool - Documentation
  ☆81Updated last year
• microsoft / Azure-Threat-Research-Matrix
  ☆73Updated 8 months ago
• msdirtbag / ADXFlowmaster
  ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.
  ☆34Updated 4 months ago
• rod-trent / SentinelWorkbooks
  Workbooks for Azure Sentinel
  ☆58Updated last year
• SecureHats / validate-detections
  GitHub action for validating Microsoft Sentinel detection rules
  ☆13Updated last year
• rod-trent / SentinelPlaybooks
  ☆55Updated 7 months ago
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆58Updated last year
• adanalvarez / TrailDiscover
  An evolving repository of CloudTrail events with detailed descriptions, MITRE ATT&CK insights, real-world incidents, references and secur…
  ☆146Updated 3 weeks ago
• msdirtbag / MDE-Quickstart
  MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore
  ☆66Updated 2 years ago
• amrandazz / cloud-threat-detection
  Cloud threat detection visualization from excalidraw
  ☆12Updated 2 years ago
• jsa2 / aad-auth-n-z
  ☆65Updated 3 years ago
• f-bader / AzSentinelQueries
  Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.
  ☆103Updated this week
• EEN421 / KQL-Queries
  Ian Hanley's deceptively simple KQL queries.
  ☆48Updated this week
• center-for-threat-informed-defense / cloud-analytics
  Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…
  ☆53Updated last year
• jonathanristo / VMMM-self-assessment-tool
  A self assessment tool to help understand your level in the SANS Vulnerability Management Maturity Model (VMMM).
  ☆23Updated 2 weeks ago
• nicolonsky / ITDR
  Collection of Microsoft Identity Threat Detection and Response resources.
  ☆40Updated 2 weeks ago