azure-ad-b2c/siem external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

azure-ad-b2c/siem

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/azure-ad-b2c/siem)

Close

azure-ad-b2c / siemView on GitHubMore

• External links
• Readme badge

The repository contains artifacts to create and publish reports, alerts, and dashboards based on Azure AD B2C logs. These artifacts can also be used for Security Information & Event Management (SIEM) related tasks.

☆67Jun 13, 2023Updated 2 years ago

Alternatives and similar repositories for siem

Users that are interested in siem are comparing it to the libraries listed below

• chadmcox / Azure_AD_Conditional_Access_Policies

  View on GitHub
  Tools to help implement Conditional Access Policies in Azure AD
  ☆18Mar 20, 2024Updated last year
• seanstark / sentinel-tools

  View on GitHub
  various tools for Microsoft Sentinel
  ☆32Jun 26, 2025Updated 8 months ago
• briandelmsft / SentinelAutomationModules

  View on GitHub
  The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
  ☆277Jan 2, 2026Updated 2 months ago
• infosecn1nja / atomic-red-team

  View on GitHub
  Small and highly portable detection tests.
  ☆13Apr 13, 2018Updated 7 years ago
• hardwaterhacker / i_want_my_eip

  View on GitHub
  Resources for I Want My EIP, presented at Derbycon 2017
  ☆11Sep 23, 2017Updated 8 years ago
• microsoft / ConditionalAccessforZeroTrustResources

  View on GitHub
  ConditionalAccessforZeroTrustResources holding resources for Azure AD CA guidance for Zero Trust
  ☆199Apr 2, 2024Updated last year
• swiftbird07 / IRIS-SOAR

  View on GitHub
  🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …
  ☆14Mar 27, 2024Updated last year
• bufferbandit / leak.docx

  View on GitHub
  Leak windows system info through a docx file
  ☆12Feb 23, 2020Updated 6 years ago
• sreedharande / Microsoft-Sentinel-As-A-Code

  View on GitHub
  Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …
  ☆59Sep 15, 2022Updated 3 years ago
• porterhau5 / BloodHound

  View on GitHub
  Six Degrees of Domain Admin
  ☆15Oct 23, 2017Updated 8 years ago
• mitre / microsoft-azure-cis-foundations-baseline

  View on GitHub
  (WIP) CIS Microsoft Azure Foundations Benchmark
  ☆17Dec 14, 2025Updated 2 months ago
• MISP / threat-actor-intelligence-server

  View on GitHub
  A simple ReST server to lookup threat actors (by name, synonym or UUID) and returning the corresponding MISP galaxy information about the…
  ☆50Aug 30, 2025Updated 6 months ago
• rsrdesarrollo / sarna

  View on GitHub
  Security Assessment Report geNerated Automatically
  ☆42Sep 26, 2024Updated last year
• przybylskirobert / AADSecurity

  View on GitHub
  Azure AD Security controls check.
  ☆16Feb 25, 2023Updated 3 years ago
• arvinddoraiswamy / ThickClientScripts

  View on GitHub
  My IDA scripts, tips and testing techniques for Thick Client applications.
  ☆17Jun 19, 2014Updated 11 years ago
• mubix / lmo

  View on GitHub
  LetMeOutOfYour.net Resources
  ☆21Jul 15, 2020Updated 5 years ago
• PaloAltoNetworks / prisma-cloud-go

  View on GitHub
  Prisma Cloud SDK in Go
  ☆18Mar 24, 2025Updated 11 months ago
• Cloud-Architekt / EntraOps

  View on GitHub
  Community project to classify, identify and protect your privileges based on Enterprise Access Model (EAM)
  ☆210Mar 1, 2026Updated last week
• microsoft / ASDET

  View on GitHub
  ☆19Sep 3, 2021Updated 4 years ago
• XpiritBV / azure-security-as-code

  View on GitHub
  Scripts to define your azure security governance as code and avoid manual settings of permissions and avoiding configuration drift
  ☆21May 11, 2021Updated 4 years ago
• microsoft / dchemistruck

  View on GitHub
  A collection of scripts to facilitate management of Microsoft Defender XDR products + Sentinel.
  ☆31Nov 11, 2025Updated 3 months ago
• mubix / attackbox

  View on GitHub
  Ansible scripts to build an attack box
  ☆24Sep 24, 2018Updated 7 years ago
• eshlomo1 / Microsoft-Sentinel-SecOps

  View on GitHub
  Microsoft Sentinel SOC Operations
  ☆264Jul 10, 2024Updated last year
• TaoYang-Cloud / azure.policy.monitor

  View on GitHub
  ☆21Jan 16, 2023Updated 3 years ago
• f-secure-foundry / ftester

  View on GitHub
  FTester - firewall and IDS testing tool [historical]
  ☆24Aug 2, 2017Updated 8 years ago
• jimtin / IRCoreForensicFramework

  View on GitHub
  Powershell / C# based cross platform forensic framework based for live incident response
  ☆23Jul 5, 2020Updated 5 years ago
• vletoux / OxidBindings

  View on GitHub
  Extract all IP of a computer using DCOM without authentication (aka detect network used for administration)
  ☆26Apr 13, 2020Updated 5 years ago
• Azure / Azure-Sentinel-Notebooks

  View on GitHub
  Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.
  ☆616Oct 17, 2025Updated 4 months ago
• edoardogerosa / sentinel-attack

  View on GitHub
  Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
  ☆1,078Nov 28, 2024Updated last year
• felixe / idsEventGenerator

  View on GitHub
  aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…
  ☆23Nov 9, 2018Updated 7 years ago
• turbot / steampipe-mod-microsoft365-compliance

  View on GitHub
  Run individual controls or full compliance benchmarks for CIS across all of your Microsoft 365 and Office 365 tenants using Powerpipe and…
  ☆27Dec 2, 2025Updated 3 months ago
• kbroughton / azure_cis_scanner

  View on GitHub
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆54Feb 15, 2023Updated 3 years ago
• JulianHayward / AzADServicePrincipalInsights

  View on GitHub
  Insights and change tracking on Microsoft Entra ID Service Principals (Enterprise Applications, Applications and Managed Identities)
  ☆248Apr 30, 2025Updated 10 months ago
• WingsOfDoom / ICU

  View on GitHub
  quick 'n dirty poc based on PoC windows auth prompt in c# based on https://gist.githubusercontent.com/mayuki/339952/raw/2c36b735bc51861a3…
  ☆31Jun 12, 2020Updated 5 years ago
• paragonsec / HiveNightmare-Checker

  View on GitHub
  A PowerShell script that checks for dangerous ACLs on system hives and shadows
  ☆28Jul 21, 2021Updated 4 years ago
• azurekid / ScEntra

  View on GitHub
  Scan Entra for risk in role assignments and escalation paths
  ☆80Dec 10, 2025Updated 2 months ago
• Azure-Samples / azure-container-apps-blue-green-with-azure-pipelines

  View on GitHub
  This sample demonstrates how to achieve Blue/Green Deployments in Azure Container Apps using Azure pipelines
  ☆28Feb 14, 2026Updated 3 weeks ago
• debaxtermsft / debaxtermsft

  View on GitHub
  Config files for my GitHub profile.
  ☆10Oct 24, 2025Updated 4 months ago
• mubix / windows-declutter

  View on GitHub
  Windows 10 De-Clutter script
  ☆25Jul 5, 2020Updated 5 years ago