eshlomo1 / CloudSec
Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're diving into offensive strategies, mastering threat hunting, or bolstering your blue-team defenses, this repo has you covered.
☆15Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for CloudSec
- Sentinel Logic Apps/Playbooks to automate enrichment, incident analysis and more.☆75Updated 2 months ago
- ☆40Updated last year
- Azure AD Incident Response☆24Updated 3 years ago
- PowerShell script to create reports of M365 User Multi-factor Authentication Registration Status and Highlight MFA Related Conditional Ac…☆12Updated 5 months ago
- Repository with supporting materials for Invictus Academy/Training☆35Updated last month
- Automation around Entra ID☆34Updated 4 months ago
- ☆26Updated last year
- Hunting Queries for Defender ATP☆72Updated last week
- ☆22Updated 2 years ago
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆10Updated last year
- Presentations from Conferences☆26Updated last month
- Repository that contains random short projects like write-ups, PowerShell scripts, and more.☆26Updated this week
- Azure AD Identity Protection Cookie Spoofing☆31Updated last year
- Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token☆24Updated last year
- Microsoft Entra ID App Audit Solution (AADAppAudit)☆80Updated 2 months ago
- A list of Entra ID (Azure AD) Audit event names and the corresponding Microsoft Graph Request Uri☆26Updated last month
- Reportly is an AzureAD user activity report tool.☆89Updated last year
- ☆44Updated this week
- ASR Configurator, Essentials and Atomic Testing☆36Updated last week
- ☆40Updated 3 years ago
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆109Updated last month
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆31Updated 6 months ago
- ☆18Updated 2 years ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆37Updated last week
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆99Updated 4 months ago
- KQL queries for cyber defense and for solving daily issues☆43Updated 3 weeks ago
- A series of PowerShell scripts to automate the assessment of Azure IaaS security☆15Updated last week
- ResearchDev - XDR & SIEM Detection☆62Updated 3 weeks ago
- KQL for Azure Resource Manager and AppID search☆22Updated 2 months ago