azure-ad-b2c / siemView external linksLinks
The repository contains artifacts to create and publish reports, alerts, and dashboards based on Azure AD B2C logs. These artifacts can also be used for Security Information & Event Management (SIEM) related tasks.
☆66Jun 13, 2023Updated 2 years ago
Alternatives and similar repositories for siem
Users that are interested in siem are comparing it to the libraries listed below
Sorting:
- Tools to help implement Conditional Access Policies in Azure AD☆18Mar 20, 2024Updated last year
- various tools for Microsoft Sentinel☆32Jun 26, 2025Updated 7 months ago
- Security information and event management, masters's diploma☆10Aug 3, 2015Updated 10 years ago
- ☆11Apr 28, 2025Updated 9 months ago
- 🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …☆13Mar 27, 2024Updated last year
- Get random bytes from the TPM (tool + BCrypt RNG provider)☆17Nov 3, 2020Updated 5 years ago
- Resources for I Want My EIP, presented at Derbycon 2017☆11Sep 23, 2017Updated 8 years ago
- Small and highly portable detection tests.☆13Apr 13, 2018Updated 7 years ago
- A cover story generator for people who Need Quick Covers On Operations☆13May 17, 2020Updated 5 years ago
- ConditionalAccessforZeroTrustResources holding resources for Azure AD CA guidance for Zero Trust☆197Apr 2, 2024Updated last year
- Leak windows system info through a docx file☆12Feb 23, 2020Updated 5 years ago
- Proof-of-concept for phishing intelligence in Elastic☆15Apr 30, 2019Updated 6 years ago
- Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …☆59Sep 15, 2022Updated 3 years ago
- Six Degrees of Domain Admin☆15Oct 23, 2017Updated 8 years ago
- Security Assessment Report geNerated Automatically☆41Sep 26, 2024Updated last year
- A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…☆50Aug 30, 2025Updated 5 months ago
- Azure AD Security controls check.☆16Feb 25, 2023Updated 2 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Jun 19, 2014Updated 11 years ago
- Prisma Cloud SDK in Go☆18Mar 24, 2025Updated 10 months ago
- LetMeOutOfYour.net Resources☆21Jul 15, 2020Updated 5 years ago
- ☆19Sep 3, 2021Updated 4 years ago
- A collection of scripts to facilitate management of Microsoft Defender XDR products + Sentinel.☆31Nov 11, 2025Updated 3 months ago
- Scripts to define your azure security governance as code and avoid manual settings of permissions and avoiding configuration drift☆21May 11, 2021Updated 4 years ago
- Ansible scripts to build an attack box☆24Sep 24, 2018Updated 7 years ago
- ☆45May 9, 2023Updated 2 years ago
- Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)☆26Apr 13, 2020Updated 5 years ago
- Powershell / C# based cross platform forensic framework based for live incident response☆23Jul 5, 2020Updated 5 years ago
- Cloud-native SIEM for intelligent security analytics for your entire enterprise.☆22Nov 22, 2021Updated 4 years ago
- Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.☆613Oct 17, 2025Updated 3 months ago
- Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK☆1,076Nov 28, 2024Updated last year
- The Capture Order API☆18Apr 7, 2020Updated 5 years ago
- ☆31Nov 5, 2025Updated 3 months ago
- Security Scanner based on CIS benchmark 1.1 inspired by Scout2☆54Feb 15, 2023Updated 2 years ago
- Insights and change tracking on Microsoft Entra ID Service Principals (Enterprise Applications, Applications and Managed Identities)☆247Apr 30, 2025Updated 9 months ago
- A PowerShell script that checks for dangerous ACLs on system hives and shadows☆28Jul 21, 2021Updated 4 years ago
- quick 'n dirty poc based on PoC windows auth prompt in c# based on https://gist.githubusercontent.com/mayuki/339952/raw/2c36b735bc51861a3…☆31Jun 12, 2020Updated 5 years ago
- Scan Entra for risk in role assignments and escalation paths☆73Dec 10, 2025Updated 2 months ago
- This sample demonstrates how to achieve Blue/Green Deployments in Azure Container Apps using Azure pipelines☆28Updated this week
- Config files for my GitHub profile.☆10Oct 24, 2025Updated 3 months ago