azurekid / blackcat
BlackCat is a PowerShell module designed to validate the security of Microsoft Azure. It provides a set of functions to identify potential security holes.
☆108Updated this week
Alternatives and similar repositories for blackcat:
Users that are interested in blackcat are comparing it to the libraries listed below
- Tool for creating reports on Entra ID Role Assignments☆92Updated last year
- Microsoft Entra ID App Audit Solution (AADAppAudit)☆82Updated 7 months ago
- ☆45Updated this week
- ☆44Updated last year
- Azure administrative tiering based on known attack paths☆75Updated this week
- Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.☆92Updated 2 weeks ago
- A pure PowerShell solution for Entra OAuth authentication, enabling easy retrieval of access and refresh tokens☆93Updated last week
- AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…☆102Updated 11 months ago
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆166Updated 7 months ago
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆265Updated 2 months ago
- Simple hunting script for suspicious M365 OAuth Apps☆277Updated 2 months ago
- A comprehensive list of usable Entra ID first-party clients with pre-consented Microsoft Graph scopes, in a simple YAML-file explorable w…☆102Updated 3 weeks ago
- Reportly is an AzureAD user activity report tool.☆92Updated last year
- Table of AD and Azure assets and whether they belong to Tier Zero☆219Updated 2 months ago
- M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…☆284Updated last month
- Lightweight security tool for auditing your organization's Conditional Access Policies (CAPs) in Microsoft Entra ID for potential misconf…☆69Updated last month
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆36Updated 5 months ago
- A tiny tool built to find and fix common misconfigurations in Active Directory-integrated DNS☆112Updated 3 months ago
- Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)☆65Updated last week
- Security Scripts and Sources for daily usage.☆58Updated last week
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆155Updated 2 weeks ago
- VirtualGHOST Detection Tool☆91Updated 11 months ago
- The "Monash Enterprise Access Model" (MEAM) is a model for tiering Active Directory that builds heavily on the Microsoft Enterprise Acces…☆98Updated 6 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆75Updated 2 weeks ago
- ResearchDev - XDR & SIEM Detection☆64Updated this week
- Conditional Access Reporting☆26Updated 2 weeks ago
- Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.☆109Updated this week
- A fork of the great TokenTactics with support for CAE and token endpoint v2☆280Updated last month
- Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're d…☆22Updated last week
- Microsoft 365 Security Assessment Tool - A Easy-To-Use Microsoft 365 Security Assessment Tool☆97Updated last week