cisagov / ScubaGoggles

Related projects: ⓘ

• CrowdStrike / falcon-scripts
  Scripts to streamline the deployment and use of the CrowdStrike Falcon sensor
  ☆144Updated 3 weeks ago
• ASD-Blueprint / ASD-Blueprint-for-Secure-Cloud
  Website for ASD's Blueprint for Secure Cloud
  ☆59Updated this week
• invictus-ir / ALFA
  ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…
  ☆142Updated 7 months ago
• CrowdStrike / Falcon-Toolkit
  Unleash the power of the Falcon Platform at the CLI
  ☆109Updated this week
• CrowdStrike / logscale-community-content
  This repository contains Community and Field contributed content for LogScale
  ☆137Updated last week
• CrowdStrike / Cloud-Azure
  Discover for Cloud and Containers Azure
  ☆27Updated 2 months ago
• rapid7 / insightvm-sql-queries
  InsightVM helpful SQL queries
  ☆57Updated 3 months ago
• Permiso-io-tools / CloudConsoleCartographer
  Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…
  ☆147Updated 4 months ago
• tenable / integration-jira-cloud
  ☆67Updated 3 weeks ago
• anvilogic-forge / armory
  Anvilogic Forge
  ☆80Updated this week
• CrowdStrike / zscaler-FalconX-integration
  This is the integration to feed Falcon X IOC data into zscaler's platform
  ☆14Updated 2 months ago
• duosecurity / duo_log_sync
  ☆37Updated 2 months ago
• CrowdStrike / falcon-query-assets
  ☆93Updated this week
• dwillowtree / diana
  Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )
  ☆107Updated 2 weeks ago
• PwC-IR / Office-365-Extractor
  The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)
  ☆256Updated 2 years ago
• cisagov / cybersecurity-performance-goals
  CISA's space for collaboration on the Cybersecurity Performance Goals.
  ☆70Updated 3 months ago
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆169Updated last month
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆40Updated 4 months ago
• CrowdStrike / psfalcon
  PowerShell for CrowdStrike's OAuth2 APIs
  ☆353Updated last week
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆65Updated 3 months ago
• invictus-ir / Microsoft-Extractor-Suite
  A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
  ☆448Updated last week
• keyboardcrunch / sentinelone-queries
  Repository of SentinelOne Deep Visibility queries.
  ☆116Updated 3 years ago
• vectra-ai-research / derf
  DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…
  ☆82Updated 8 months ago
• SophosRapidResponse / OSQuery
  ☆79Updated 2 months ago
• AzureAD / Azure-AD-Incident-Response-PowerShell-Module
  The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…
  ☆412Updated last year
• chronicle / ingestion-scripts
  ☆26Updated last week
• microsoft / AzDetectSuite
  A collection of ARM-based detections for Azure/AzureAD based TTPs
  ☆78Updated 9 months ago
• mikeprivette / NIST-to-Tech
  An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
  ☆107Updated 2 months ago
• packetchaos / navi
  A Command-line tool which leverages the Tenable.io API to reduce the time it takes to get information that is common during remediation o…
  ☆72Updated last week