Alternatives and similar repositories for Sparrow

Users that are interested in Sparrow are comparing it to the libraries listed below

• CrowdStrike / CRT
  Contact: CRT@crowdstrike.com
  ☆743Updated 2 years ago
• T0pCyber / hawk
  Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
  ☆896Updated 8 months ago
• microsoft / Microsoft-365-Defender-Hunting-Queries
  Sample queries for Advanced hunting in Microsoft 365 Defender
  ☆2,033Updated 3 years ago
• edoardogerosa / sentinel-attack
  Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
  ☆1,074Updated 11 months ago
• mandiant / Mandiant-Azure-AD-Investigator
  ☆640Updated 2 years ago
• reprise99 / Sentinel-Queries
  Collection of KQL queries
  ☆1,584Updated 10 months ago
• OTRF / Microsoft-Sentinel2Go
  Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.
  ☆574Updated 9 months ago
• Azure / SimuLand
  Understand adversary tradecraft and improve detection strategies
  ☆713Updated 2 years ago
• cisagov / untitledgoosetool
  Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in…
  ☆938Updated 4 months ago
• ukncsc / lme
  Logging Made Easy
  ☆710Updated 2 years ago
• trustedsec / SysmonCommunityGuide
  TrustedSec Sysinternals Sysmon Community Guide
  ☆1,248Updated 4 months ago
• palantir / windows-event-forwarding
  A repository for using windows event forwarding for incident detection and response
  ☆1,289Updated 2 months ago
• alexverboon / MDATP
  MDATP
  ☆459Updated last year
• cisagov / ScubaGear
  Automation to assess the state of your M365 tenant against CISA's baselines
  ☆2,348Updated this week
• darkquasar / AzureHunter
  A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
  ☆789Updated 3 years ago
• microsoft / SecCon-Framework
  Security configuration is complex. With thousands of group policies available in Windows, choosing the “best” setting is difficult. It’s …
  ☆282Updated 2 years ago
• mdecrevoisier / Microsoft-eventlog-mindmap
  Set of Mindmaps providing a detailed overview of the different #Microsoft auditing capacities for Windows, Exchange, Azure,...
  ☆1,086Updated last week
• nsacyber / Event-Forwarding-Guidance
  Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…
  ☆880Updated 5 years ago
• SwiftOnSecurity / OrgKit
  Provision a brand-new company with proper defaults in Windows, Offic365, and Azure
  ☆614Updated last year
• OfficeDev / O365-InvestigationTooling
  ☆581Updated 5 years ago
• cisagov / cset
  Cybersecurity Evaluation Tool
  ☆1,711Updated this week
• Azure / Azure-Sentinel-Notebooks
  Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.
  ☆603Updated last month
• GossiTheDog / ThreatHunting
  Tools for hunting for threats.
  ☆599Updated 6 months ago
• mandiant / sunburst_countermeasures
  ☆561Updated 2 years ago
• NetSPI / MicroBurst
  A collection of scripts for assessing Microsoft Azure security
  ☆2,264Updated 2 weeks ago
• ukncsc / Device-Security-Guidance-Configuration-Packs
  This repository contains policy packs which can be used by system management software to configure device platforms (such as Windows 10 a…
  ☆445Updated last month
• microsoft / PowerStig
  STIG Automation
  ☆588Updated 2 months ago
• microsoft / msticpy
  Microsoft Threat Intelligence Security Tools
  ☆1,914Updated 2 weeks ago
• Bert-JanP / Hunting-Queries-Detection-Rules
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,590Updated last week
• microsoft / AaronLocker
  Robust and practical application control for Windows
  ☆671Updated 3 years ago