Alternatives and similar repositories for AzureAuditPrep

Users that are interested in AzureAuditPrep are comparing it to the libraries listed below

• BloodHoundAD / Legacy-AzureHound.ps1
  ☆151Updated 4 years ago
• jonny-jhnson / Marvel-Lab
  A collection of Powershell scripts that will help automate the build process for a Marvel domain.
  ☆148Updated last year
• OTRF / Set-AuditRule
  Useful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity
  ☆94Updated 3 years ago
• olafhartong / MDE-AuditCheck
  MDE relies on some of the Audit settings to be enabled
  ☆99Updated 3 years ago
• gmellini / Microsoft-Defender-Security-Center-Hunting-Queries
  Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…
  ☆39Updated 4 years ago
• talmaor / AzureADLateralMovement
  Lateral Movement graph for Azure Active Directory
  ☆124Updated 2 years ago
• microsoft / DefendTheFlag
  Get started fast with a built out lab, built from scratch via Azure Resource Manager (ARM) and Desired State Configuration (DSC), to test…
  ☆237Updated 5 years ago
• secgroundzero / KQL_Reference_Manual
  ☆43Updated 4 years ago
• maartengoet / notebooks
  Jupyter notebooks
  ☆25Updated 5 years ago
• DefensiveOrigins / APT-Lab-Terraform
  Purple Teaming Attack & Hunt Lab - Terraform
  ☆160Updated 3 years ago
• PlumHound / PlumHound-Tasks
  Community Tasks/Plans for PlumHound Queueing
  ☆23Updated 2 years ago
• Azure / CONVEX
  CONVEX is a group of CTFs that are independently deployable into participant Azure environments.
  ☆139Updated 3 years ago
• redcanaryco / AtomicTestHarnesses
  Public Repo for Atomic Test Harness
  ☆278Updated 6 months ago
• LaresLLC / SysmonConfigPusher
  Pushes Sysmon Configs
  ☆88Updated 4 years ago
• chihebchebbi / Sentinel2Attack
  ☆14Updated 4 years ago
• microsoft / MTP-AHQ
  DEPRECATED -> GO TO https://github.com/microsoft/Microsoft-threat-protection-Hunting-Queries
  ☆20Updated 5 years ago
• jangeisbauer / AdvancedHunting
  Advanced Hunting Queries for Microsoft Security Products
  ☆107Updated 2 years ago
• p0w3rsh3ll / NetCease
  ☆67Updated 4 years ago
• SecureHats / Sentinel-playground
  Solution to deploy a Sentinel playground demo environment
  ☆56Updated 2 years ago
• rootsecdev / Microsoft-Blue-Forest
  Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers
  ☆263Updated last year
• improsec / Get-bADpasswords
  Get insights into the actual strength and quality of passwords in Active Directory.
  ☆157Updated last year
• WillOram / AzureAD-incident-response
  Notes on responding to security breaches relating to Azure AD
  ☆117Updated 3 years ago
• inodee / spl-to-kql
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆44Updated 4 years ago
• davidprowe / AD_Sec_Tools
  ☆115Updated 6 years ago
• mvelazc0 / PurpleTeamPlaybook
  Active Directory Purple Team Playbook
  ☆113Updated 2 years ago
• thalpius / Microsoft-Azure-AD-Conditional-Access-Validator
  This script validates the most common Conditional Access policies in Microsoft 365.
  ☆10Updated last year
• netwrix / PingCastleCloud
  Audit program for AzureAD
  ☆149Updated 2 years ago
• s0lari / Hornets-Nest
  Purple Team Security
  ☆75Updated 3 years ago
• iknowjason / BlueCloud
  Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.
  ☆137Updated 2 years ago
• mikoiv / MicrosoftSentinel-ShodanMonitor
  Ingesting Shodan Monitor Alerts to Microsoft Sentinel
  ☆34Updated 2 years ago