Alternatives and similar repositories for Sparrow

Users that are interested in Sparrow are comparing it to the libraries listed below

• CrowdStrike / CRT
  Contact: CRT@crowdstrike.com
  ☆737Updated 2 years ago
• T0pCyber / hawk
  Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
  ☆871Updated 5 months ago
• microsoft / Microsoft-365-Defender-Hunting-Queries
  Sample queries for Advanced hunting in Microsoft 365 Defender
  ☆2,022Updated 3 years ago
• cisagov / untitledgoosetool
  Untitled Goose Tool is a robust and flexible hunt and incident response tool that adds novel authentication and data gathering methods in…
  ☆932Updated 3 weeks ago
• netevert / sentinel-attack
  Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
  ☆1,071Updated 8 months ago
• ukncsc / lme
  Logging Made Easy
  ☆712Updated last year
• mandiant / Mandiant-Azure-AD-Investigator
  ☆631Updated 2 years ago
• Azure / SimuLand
  Understand adversary tradecraft and improve detection strategies
  ☆713Updated 2 years ago
• reprise99 / Sentinel-Queries
  Collection of KQL queries
  ☆1,560Updated 7 months ago
• OTRF / Microsoft-Sentinel2Go
  Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.
  ☆575Updated 6 months ago
• trustedsec / SysmonCommunityGuide
  TrustedSec Sysinternals Sysmon Community Guide
  ☆1,227Updated 3 weeks ago
• cisagov / ScubaGear
  Automation to assess the state of your M365 tenant against CISA's baselines
  ☆2,254Updated last week
• palantir / windows-event-forwarding
  A repository for using windows event forwarding for incident detection and response
  ☆1,276Updated last year
• nsacyber / Event-Forwarding-Guidance
  Configuration guidance for implementing collection of security relevant Windows Event Log events by using Windows Event Forwarding. #nsac…
  ☆873Updated 4 years ago
• alexverboon / MDATP
  MDATP
  ☆461Updated last year
• microsoft / SecCon-Framework
  Security configuration is complex. With thousands of group policies available in Windows, choosing the “best” setting is difficult. It’s …
  ☆285Updated 2 years ago
• CrowdStrike / psfalcon
  PowerShell for CrowdStrike's OAuth2 APIs
  ☆426Updated last week
• darkquasar / AzureHunter
  A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
  ☆787Updated 2 years ago
• silverhack / monkey365
  Monkey365 provides a tool for security consultants to easily conduct not only Microsoft 365, but also Azure subscriptions and Microsoft E…
  ☆1,169Updated 3 weeks ago
• NetSPI / MicroBurst
  A collection of scripts for assessing Microsoft Azure security
  ☆2,211Updated 2 weeks ago
• GossiTheDog / ThreatHunting
  Tools for hunting for threats.
  ☆593Updated 3 months ago
• davehull / Kansa
  A Powershell incident response framework
  ☆1,605Updated 2 years ago
• FalconForceTeam / FalconFriday
  Hunting queries and detections
  ☆821Updated 6 months ago
• OfficeDev / O365-InvestigationTooling
  ☆580Updated 4 years ago
• Azure / Stormspotter
  Azure Red Team tool for graphing Azure and Azure Active Directory objects
  ☆1,638Updated last year
• cisagov / cset
  Cybersecurity Evaluation Tool
  ☆1,617Updated this week
• olafhartong / sysmon-modular
  A repository of sysmon configuration modules
  ☆2,836Updated 11 months ago
• cyberark / SkyArk
  SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
  ☆901Updated 7 months ago
• microsoft / AaronLocker
  Robust and practical application control for Windows
  ☆657Updated 2 years ago
• AzureAD / AzureADAssessment
  Tooling for assessing an Azure AD tenant state and configuration
  ☆815Updated last year