eshlomo1/Azure-AD-Incident-Response external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

eshlomo1/Azure-AD-Incident-Response

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/eshlomo1/Azure-AD-Incident-Response)

Close

eshlomo1 / Azure-AD-Incident-ResponseView on GitHubMore

• External links
• Readme badge

Azure AD Incident Response

☆28Oct 8, 2021Updated 4 years ago

Alternatives and similar repositories for Azure-AD-Incident-Response

Users that are interested in Azure-AD-Incident-Response are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• eshlomo1 / Ransomware-NOTE

  View on GitHub
  All about ransomware notes and extension files.
  ☆14Aug 26, 2023Updated 2 years ago
• eshlomo1 / Microsoft-Sentinel-SecOps

  View on GitHub
  Microsoft Sentinel SOC Operations
  ☆265Jul 10, 2024Updated last year
• eshlomo1 / Azure-Monitor-Ninja-Training

  View on GitHub
  Guides, articles, and a lot of Azure Monitor information
  ☆38Apr 18, 2021Updated 5 years ago
• eshlomo1 / MS-Defender-4-xOPS

  View on GitHub
  ☆18Jul 20, 2024Updated last year
• IdentityMan / AzureAD

  View on GitHub
  ☆17Apr 25, 2025Updated last year
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• chandunsa / IRP

  View on GitHub
  Incident Response Playbooks
  ☆15Jun 10, 2019Updated 6 years ago
• petebryan / blue_team_con

  View on GitHub
  ☆17Aug 27, 2022Updated 3 years ago
• WillOram / AzureAD-incident-response

  View on GitHub
  Notes on responding to security breaches relating to Azure AD
  ☆123Mar 14, 2022Updated 4 years ago
• elysiumsecurityltd / IRM

  View on GitHub
  Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General
  ☆24Dec 16, 2021Updated 4 years ago
• knightmare2600 / wintools

  View on GitHub
  Useful windows tools for Blue, Red & Purple teams
  ☆11Mar 8, 2026Updated 2 months ago
• vavarachen / volatility_automation

  View on GitHub
  A tool to automate memory dump processing using Volatility, including optional Splunk integration.
  ☆11Jul 29, 2020Updated 5 years ago
• robinmeure / governor-sharing

  View on GitHub
  Governor Sharing
  ☆11Mar 18, 2025Updated last year
• AndrewRathbun / DFIRRegex

  View on GitHub
  A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.
  ☆108Mar 12, 2026Updated last month
• Cyb3r-Monk / Cheat-Sheets

  View on GitHub
  Cheat sheets for threat hunting, detection and other stuff.
  ☆34Oct 7, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• XanthusSecurity / memparse

  View on GitHub
  ☆14Jan 18, 2020Updated 6 years ago
• Kaidja / Defender-for-Endpoint

  View on GitHub
  Defender for Endpoint
  ☆28Mar 28, 2026Updated last month
• jsa2 / kql

  View on GitHub
  KQL for Azure Resource Manager and AppID search
  ☆23Aug 15, 2024Updated last year
• CyberCX-DFIR / usnjrnl_rewind

  View on GitHub
  USN Journal full path builder
  ☆69Apr 16, 2026Updated 3 weeks ago
• rallyspeed / Azure-CIS

  View on GitHub
  Automate Azure subscription check against CIS Benchmark
  ☆22Jun 29, 2018Updated 7 years ago
• DamonMohammadbagher / NativePayload_TiACBT

  View on GitHub
  NativePayload_TiACBT (Remote Thread Injection + C# Async Method + CallBack Functions Technique)
  ☆13Jun 6, 2023Updated 2 years ago
• alexverboon / SentinelTIUploadToolkit

  View on GitHub
  Sentinel Threat Intelligence Upload Toolkit
  ☆18Jul 15, 2024Updated last year
• curi0usJack / psfire

  View on GitHub
  simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe
  ☆14Mar 29, 2017Updated 9 years ago
• microsoft / MicrosoftDefenderForEndpoint-API-PowerShell

  View on GitHub
  This project contains samples how to use MDATP API for integration with other systems and products
  ☆29Dec 22, 2019Updated 6 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• conix-security / debug_inject

  View on GitHub
  Shellcode injection using debugging APIs
  ☆19Jan 13, 2014Updated 12 years ago
• zulu8 / Get-Baseline

  View on GitHub
  PowerShell Script for Agentless Incident Response
  ☆25Apr 5, 2018Updated 8 years ago
• dirkjanm / family-of-client-ids-research

  View on GitHub
  Research into Undocumented Behavior of Azure AD Refresh Tokens
  ☆13Oct 27, 2023Updated 2 years ago
• Cyb3r-Monk / RITA-J

  View on GitHub
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆209Jul 21, 2022Updated 3 years ago
• netwrix / PingCastleCloud

  View on GitHub
  Audit program for AzureAD
  ☆151May 31, 2023Updated 2 years ago
• FalconForceTeam / FalconForge

  View on GitHub
  This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…
  ☆17Mar 10, 2023Updated 3 years ago
• Sebmolendijk / mcas-labs

  View on GitHub
  Microsoft Cloud App Security labs
  ☆14Dec 17, 2018Updated 7 years ago
• microsoft / ASDET

  View on GitHub
  ☆19Sep 3, 2021Updated 4 years ago
• zrosenfield / sharepoint-ai-skills

  View on GitHub
  ☆45May 2, 2026Updated last week
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• davegallant / rfd

  View on GitHub
  view RedFlagDeals.com from the command line
  ☆10Jul 6, 2024Updated last year
• MII-Cybersec / Threat-Hunting-Notebook

  View on GitHub
  Collection of Jupyter Notebook for Threat Hunting and Blue Team Purposes
  ☆22Jun 15, 2022Updated 3 years ago
• w8mej / InfoSec-Blueprints

  View on GitHub
  Essential playbooks & runbooks for cybersecurity operations. A dynamic resource for security pros to navigate digital threats, with best …
  ☆17Apr 14, 2025Updated last year
• microsoft / Scalable-Infrastructure-for-Investigation-and-Incident-Response

  View on GitHub
  Powershell Scripts to automatically deploy an image of a prebuilt VM (up-to-date and with pre-deployed tools and apps) to every region yo…
  ☆20Jun 27, 2023Updated 2 years ago
• DamonMohammadbagher / ETWNetMonv3

  View on GitHub
  ETWNetMonv3 is simple C# code for Monitoring TCP Network Connection via ETW & ETWProcessMon/2 is for Monitoring Process/Thread/Memory/Ima…
  ☆40Jun 6, 2023Updated 2 years ago
• rvrsh3ll / HashCant

  View on GitHub
  Some Hashcat Rules for 2020 and beyond. Contributions encouraged!
  ☆26May 26, 2022Updated 3 years ago
• v-byte-cpu / juicyrout

  View on GitHub
  Phishing Reverse Proxy with MFA bypass
  ☆18Jan 28, 2023Updated 3 years ago