amrandazz / cloud-threat-detectionLinks
Cloud threat detection visualization from excalidraw
☆12Updated 3 years ago
Alternatives and similar repositories for cloud-threat-detection
Users that are interested in cloud-threat-detection are comparing it to the libraries listed below
Sorting:
- Repository with supporting materials for Invictus Academy/Training☆43Updated 5 months ago
- ☆29Updated 6 months ago
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆53Updated 2 years ago
- Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…☆27Updated 8 months ago
- A collection of ARM-based detections for Azure/AzureAD based TTPs☆86Updated last year
- GitHub action for validating Microsoft Sentinel detection rules☆13Updated 2 years ago
- ☆41Updated 3 months ago
- Solution to deploy a Sentinel playground demo environment☆56Updated last year
- ☆26Updated 2 years ago
- Lightweight security tool for auditing your organization's Conditional Access Policies (CAPs) in Microsoft Entra ID for potential misconf…☆72Updated 3 months ago
- ThreatModel for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based app…☆59Updated last year
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆29Updated last year
- Ingesting Shodan Monitor Alerts to Microsoft Sentinel☆34Updated last year
- Knowledge Report Alert & Normalization Generator☆27Updated last year
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆34Updated 4 months ago
- A tool that allows you to document and assess any security automation in your SOC☆46Updated 7 months ago
- ☆42Updated 4 years ago
- ☆48Updated this week
- Cloud-native SIEM for intelligent security analytics for your entire enterprise.☆19Updated 2 years ago
- A few scripts I put together to send and receive data from an Azure Log Analytics workspace leveraging the Azure Monitor HTTP Data Collec…☆23Updated 2 years ago
- ☆57Updated 10 months ago
- Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs☆54Updated last year
- A WDAC configuration repository with the sole intention of enriching MDE☆28Updated 2 years ago
- ☆17Updated 3 years ago
- Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more☆11Updated this week
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 4 years ago
- A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform☆12Updated 3 years ago
- ☆33Updated last week
- Defender Resource Hub☆25Updated 2 weeks ago
- AWS EKS Cluster Forensics☆23Updated 3 years ago