eshlomo1 / CloudSecLinks
Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're diving into offensive strategies, mastering threat hunting, or bolstering your blue-team defenses, this repo has you covered.
☆35Updated last month
Alternatives and similar repositories for CloudSec
Users that are interested in CloudSec are comparing it to the libraries listed below
Sorting:
- Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.☆122Updated this week
- Sharing my KQL queries for Azure Sentinel☆185Updated last week
- Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.☆98Updated last month
- Simple hunting script for suspicious M365 OAuth Apps☆291Updated 6 months ago
- PowerShell-based Automation of Defender for Endpoint☆172Updated last month
- A collection of ARM-based detections for Azure/AzureAD based TTPs☆88Updated last year
- ☆50Updated this week
- A collection of Microsoft Sentinel workbooks and analytics rules.☆108Updated last year
- BlackCat is a PowerShell module designed to validate the security of Microsoft Azure. It provides a set of functions to identify potentia…☆135Updated this week
- Microsoft Entra ID App Audit Solution (AADAppAudit)☆83Updated last year
- ☆35Updated 3 months ago
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆178Updated last week
- Security Scripts and Sources for daily usage.☆65Updated 2 months ago
- ☆45Updated last year
- Collection of Microsoft Identity Threat Detection and Response resources.☆49Updated 3 weeks ago
- The collateral repository for The KQL Mysteries series☆25Updated last year
- Ian Hanley's deceptively simple KQL queries.☆53Updated last week
- A lightweight PowerShell tool for assessing the security posture of Microsoft Entra ID environments. It helps identify privileged object…☆264Updated last month
- Automatic Microsoft Sentinel Deployment☆15Updated 4 months ago
- Content and collateral for the Microsoft Sentinel SOC 101 series☆192Updated last year
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆40Updated 9 months ago
- In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…☆128Updated last week
- Docs and samples for privileged identity and access management in Microsoft Azure and Microsoft Entra.☆169Updated last month
- Tool for creating reports on Entra ID Role Assignments☆96Updated last year
- Microsoft Sentinel SOC Operations☆260Updated last year
- My personal work with Copilot for Security☆193Updated 2 months ago
- CA Optics - Azure AD Conditional Access Gap Analyzer☆335Updated last year
- ☆60Updated last year
- Community project to classify, identify and protect your privileges based on Enterprise Access Model (EAM)☆181Updated 3 months ago
- Content Repo for Demystifying KQL Tutorial Series☆70Updated 11 months ago