cisagov / ScubaGoggles
SCuBA Secure Configuration Baselines and assessment tool for Google Workspace
☆148Updated this week
Related projects: ⓘ
- Scripts to streamline the deployment and use of the CrowdStrike Falcon sensor☆144Updated 3 weeks ago
- Website for ASD's Blueprint for Secure Cloud☆59Updated this week
- ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit l…☆142Updated 7 months ago
- Unleash the power of the Falcon Platform at the CLI☆109Updated this week
- This repository contains Community and Field contributed content for LogScale☆137Updated last week
- Discover for Cloud and Containers Azure☆27Updated 2 months ago
- InsightVM helpful SQL queries☆57Updated 3 months ago
- Released at Black Hat Asia on April 18, 2024, Cloud Console Cartographer is a framework for condensing groupings of cloud events (e.g. Cl…☆147Updated 4 months ago
- ☆67Updated 3 weeks ago
- Anvilogic Forge☆80Updated this week
- This is the integration to feed Falcon X IOC data into zscaler's platform☆14Updated 2 months ago
- ☆37Updated 2 months ago
- ☆93Updated this week
- Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )☆107Updated 2 weeks ago
- The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)☆256Updated 2 years ago
- CISA's space for collaboration on the Cybersecurity Performance Goals.☆70Updated 3 months ago
- Dorothy is a tool to test security monitoring and detection for Okta environments☆169Updated last month
- A tool that allows you to document and assess any security automation in your SOC☆40Updated 4 months ago
- PowerShell for CrowdStrike's OAuth2 APIs☆353Updated last week
- Controls Assessment Specification☆65Updated 3 months ago
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆448Updated last week
- Repository of SentinelOne Deep Visibility queries.☆116Updated 3 years ago
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆82Updated 8 months ago
- ☆79Updated 2 months ago
- The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…☆412Updated last year
- ☆26Updated last week
- A collection of ARM-based detections for Azure/AzureAD based TTPs☆78Updated 9 months ago
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆107Updated 2 months ago
- A Command-line tool which leverages the Tenable.io API to reduce the time it takes to get information that is common during remediation o…☆72Updated last week