eshlomo1/Azure-AD-Incident-Response external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

eshlomo1/Azure-AD-Incident-Response

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/eshlomo1/Azure-AD-Incident-Response)

Close

eshlomo1 / Azure-AD-Incident-ResponseView on GitHubMore

• External links
• Readme badge

Azure AD Incident Response

☆28Oct 8, 2021Updated 4 years ago

Alternatives and similar repositories for Azure-AD-Incident-Response

Users that are interested in Azure-AD-Incident-Response are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• eshlomo1 / Ransomware-NOTE

  View on GitHub
  All about ransomware notes and extension files.
  ☆14Aug 26, 2023Updated 2 years ago
• eshlomo1 / Microsoft-Sentinel-SecOps

  View on GitHub
  Microsoft Sentinel SOC Operations
  ☆265Jul 10, 2024Updated last year
• eshlomo1 / Azure-Monitor-Ninja-Training

  View on GitHub
  Guides, articles, and a lot of Azure Monitor information
  ☆38Apr 18, 2021Updated 5 years ago
• eshlomo1 / MS-Defender-4-xOPS

  View on GitHub
  ☆18Jul 20, 2024Updated last year
• IdentityMan / AzureAD

  View on GitHub
  ☆17Apr 25, 2025Updated last year
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• chandunsa / IRP

  View on GitHub
  Incident Response Playbooks
  ☆15Jun 10, 2019Updated 6 years ago
• petebryan / blue_team_con

  View on GitHub
  ☆17Aug 27, 2022Updated 3 years ago
• matthieugras / timeline-downloader

  View on GitHub
  ☆84Feb 4, 2026Updated 3 months ago
• WillOram / AzureAD-incident-response

  View on GitHub
  Notes on responding to security breaches relating to Azure AD
  ☆123Mar 14, 2022Updated 4 years ago
• elysiumsecurityltd / IRM

  View on GitHub
  Incident Response Methodologies (IRM), also called Incident Playbook, based on the work done by the CERT Societe General
  ☆24Dec 16, 2021Updated 4 years ago
• knightmare2600 / wintools

  View on GitHub
  Useful windows tools for Blue, Red & Purple teams
  ☆11May 20, 2026Updated last week
• vavarachen / volatility_automation

  View on GitHub
  A tool to automate memory dump processing using Volatility, including optional Splunk integration.
  ☆11Jul 29, 2020Updated 5 years ago
• robinmeure / governor-sharing

  View on GitHub
  Governor Sharing
  ☆11Mar 18, 2025Updated last year
• AndrewRathbun / DFIRRegex

  View on GitHub
  A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.
  ☆108Mar 12, 2026Updated 2 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• Cyb3r-Monk / Cheat-Sheets

  View on GitHub
  Cheat sheets for threat hunting, detection and other stuff.
  ☆34Oct 7, 2022Updated 3 years ago
• XanthusSecurity / memparse

  View on GitHub
  ☆14Jan 18, 2020Updated 6 years ago
• Kaidja / Defender-for-Endpoint

  View on GitHub
  Defender for Endpoint
  ☆28Mar 28, 2026Updated 2 months ago
• jsa2 / kql

  View on GitHub
  KQL for Azure Resource Manager and AppID search
  ☆23Aug 15, 2024Updated last year
• CyberCX-DFIR / usnjrnl_rewind

  View on GitHub
  USN Journal full path builder
  ☆69Apr 16, 2026Updated last month
• rallyspeed / Azure-CIS

  View on GitHub
  Automate Azure subscription check against CIS Benchmark
  ☆23Jun 29, 2018Updated 7 years ago
• DamonMohammadbagher / NativePayload_TiACBT

  View on GitHub
  NativePayload_TiACBT (Remote Thread Injection + C# Async Method + CallBack Functions Technique)
  ☆12Jun 6, 2023Updated 2 years ago
• ashwin-patil / blue-teaming-with-kql

  View on GitHub
  Repository with Sample KQL Query examples for Threat Hunting
  ☆218Sep 1, 2022Updated 3 years ago
• alexverboon / SentinelTIUploadToolkit

  View on GitHub
  Sentinel Threat Intelligence Upload Toolkit
  ☆18Jul 15, 2024Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• curi0usJack / psfire

  View on GitHub
  simple demo of using C# & System.Management.Automation.dll to run powershell code (b64 encoded) without powershell.exe
  ☆14Mar 29, 2017Updated 9 years ago
• microsoft / MicrosoftDefenderForEndpoint-API-PowerShell

  View on GitHub
  This project contains samples how to use MDATP API for integration with other systems and products
  ☆29Dec 22, 2019Updated 6 years ago
• conix-security / debug_inject

  View on GitHub
  Shellcode injection using debugging APIs
  ☆19Jan 13, 2014Updated 12 years ago
• zulu8 / Get-Baseline

  View on GitHub
  PowerShell Script for Agentless Incident Response
  ☆25Apr 5, 2018Updated 8 years ago
• dirkjanm / family-of-client-ids-research

  View on GitHub
  Research into Undocumented Behavior of Azure AD Refresh Tokens
  ☆13Oct 27, 2023Updated 2 years ago
• Cyb3r-Monk / RITA-J

  View on GitHub
  Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
  ☆210Jul 21, 2022Updated 3 years ago
• FalconForceTeam / FalconForge

  View on GitHub
  This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…
  ☆17Mar 10, 2023Updated 3 years ago
• Sebmolendijk / mcas-labs

  View on GitHub
  Microsoft Cloud App Security labs
  ☆14Dec 17, 2018Updated 7 years ago
• rasta-mouse / AsyncNamedPipes

  View on GitHub
  Send and receive messages over Named Pipes asynchronously.
  ☆39Sep 17, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• microsoft / ASDET

  View on GitHub
  ☆18Sep 3, 2021Updated 4 years ago
• davegallant / rfd

  View on GitHub
  view RedFlagDeals.com from the command line
  ☆10Jul 6, 2024Updated last year
• MII-Cybersec / Threat-Hunting-Notebook

  View on GitHub
  Collection of Jupyter Notebook for Threat Hunting and Blue Team Purposes
  ☆22Jun 15, 2022Updated 3 years ago
• Lopi / Linux-scripts

  View on GitHub
  Wrapper script to automate common system administration tasks.
  ☆14Feb 27, 2012Updated 14 years ago
• w8mej / InfoSec-Blueprints

  View on GitHub
  Essential playbooks & runbooks for cybersecurity operations. A dynamic resource for security pros to navigate digital threats, with best …
  ☆19May 12, 2026Updated 2 weeks ago
• microsoft / Scalable-Infrastructure-for-Investigation-and-Incident-Response

  View on GitHub
  Powershell Scripts to automatically deploy an image of a prebuilt VM (up-to-date and with pre-deployed tools and apps) to every region yo…
  ☆20Jun 27, 2023Updated 2 years ago
• kbroughton / azure_cis_scanner

  View on GitHub
  Security Scanner based on CIS benchmark 1.1 inspired by Scout2
  ☆54Feb 15, 2023Updated 3 years ago