Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're diving into offensive strategies, mastering threat hunting, or bolstering your blue-team defenses, this repo has you covered.
☆47Feb 14, 2026Updated 2 weeks ago
Alternatives and similar repositories for CloudSec
Users that are interested in CloudSec are comparing it to the libraries listed below
Sorting:
- ☆17Jul 20, 2024Updated last year
- An Azure SPN access minimizer☆47Jan 15, 2026Updated last month
- The Sentinel.blog Repository provides automation tools for updating Analytics Rules, Content Hub Solutions, and Workbooks, eliminating re…☆17Updated this week
- Conditional Access baseline for March 2025☆12Mar 4, 2025Updated last year
- AWS X-Ray for Covert Command & Control☆45Oct 13, 2025Updated 4 months ago
- Windows Hardening Powershell Scripts☆24Oct 3, 2025Updated 5 months ago
- Sample code using Microsoft Graph APIs to register FIDO2 security keys for Entra ID users☆25Jan 8, 2026Updated last month
- Copilot for Security Tools☆17Apr 19, 2024Updated last year
- ☆55Nov 18, 2025Updated 3 months ago
- This repository contains various public projects created by the owners of Hybrid Brothers☆21Nov 3, 2023Updated 2 years ago
- A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…☆758Aug 28, 2025Updated 6 months ago
- Azure AD Incident Response☆27Oct 8, 2021Updated 4 years ago
- ☆21Updated this week
- XtremeNmapParser (XNP) is a tool that takes XML files generated by Nmap and converts them into accessible and easily manipulable formats …☆21Feb 16, 2026Updated 2 weeks ago
- Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token☆27Dec 1, 2022Updated 3 years ago
- ☆25Feb 8, 2023Updated 3 years ago
- Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.☆115Jan 18, 2026Updated last month
- Modified version of Impacket to use dynamic NTLMv2 Challenge/Response☆20Dec 26, 2022Updated 3 years ago
- ☆34Nov 11, 2025Updated 3 months ago
- ☆78Feb 4, 2026Updated last month
- pimctl is a tool to manage Azure/Entra PIM activations and approvals from the terminal☆24Apr 28, 2025Updated 10 months ago
- ☆24Mar 25, 2025Updated 11 months ago
- Ian Hanley's deceptively simple KQL queries.☆68Dec 27, 2025Updated 2 months ago
- Additional resources to improve customer experience with Microsoft Defender for Identity☆121Sep 12, 2025Updated 5 months ago
- Guidance and collateral for troubleshooting and managing Azure Sentinel data costs.☆28Oct 9, 2023Updated 2 years ago
- Microsoft Sentinel SOC Operations☆264Jul 10, 2024Updated last year
- ☆48Jun 6, 2025Updated 9 months ago
- Maintain Tier 0 users. This script take care all Tier 0 users are in the correct OU or in the default user container and add the Kerberos…☆65Apr 1, 2025Updated 11 months ago
- https://github.com/janoglezcampos/c_syscalls with the ASM rewritten by myself for Visual Studio's Compiler.☆34Jun 23, 2024Updated last year
- AADInternals-Endpoints PowerShell module☆35Jul 2, 2025Updated 8 months ago
- My personal work with Copilot for Security☆200Jun 27, 2025Updated 8 months ago
- In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…☆134Dec 18, 2025Updated 2 months ago
- A collection of Bug Bounty Tips collected from GitHub to all bug bounty hunters☆29Dec 12, 2023Updated 2 years ago
- ☆34May 30, 2023Updated 2 years ago
- Content from my blog.☆36May 5, 2025Updated 10 months ago
- ☆30Nov 11, 2024Updated last year
- ☆77Feb 27, 2026Updated last week
- Offline Security Client☆12Feb 10, 2026Updated 3 weeks ago
- Security Workshop | Azure☆10Jul 28, 2020Updated 5 years ago