Alternatives and similar repositories for Seahaven

Users that are interested in Seahaven are comparing it to the libraries listed below

• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆106Updated 5 months ago
• rootsecdev / Presentations
  Presentations from Conferences
  ☆29Updated 8 months ago
• FuzzySecurity / SANS-HackFest-2023
  ☆49Updated last year
• techBrandon / CAPs
  Scripts to enumerate and report on Entra Conditional Access
  ☆32Updated last month
• improsec / 2Cloudz
  ☆25Updated 3 years ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆42Updated last month
• Cyb3rWard0g / HF-Agents-Course-Notes
  My Notes from Hugging Face AI Agents Course
  ☆13Updated 3 months ago
• nicolonsky / AzureAiTMFunction
  Azure AiTM Function PoC to phish Entra ID Credentials
  ☆22Updated 7 months ago
• msdirtbag / azurevelo
  Velociraptor Server hosted in Azure App Service
  ☆54Updated this week
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆27Updated last year
• GabrielDuschl / Automated-CME-Password-Spraying
  A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…
  ☆14Updated last year
• zh54321 / GraphPreConsentExplorer
  A comprehensive list of usable Entra ID first-party clients with pre-consented Microsoft Graph scopes, in a simple YAML-file explorable w…
  ☆107Updated 2 months ago
• secgroundzero / KQL_Reference_Manual
  ☆42Updated 4 years ago
• secureworks / TokenMan
  ☆100Updated 2 years ago
• mr-r3b00t / KQL
  This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet
  ☆12Updated 3 months ago
• secureworks / primary-refresh-token-viewer
  ☆11Updated 2 years ago
• FalconForceTeam / FalconForge
  This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…
  ☆17Updated 2 years ago
• securityjoes / Crowdstrike-Deploy
  The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆24Updated last week
• sleeptok3n / RoleCrawl
  ☆21Updated last year
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆70Updated 5 months ago
• JeffMichelmore / MDEKit
  ☆41Updated last year
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated last year
• zh54321 / EntraTokenAid
  A pure PowerShell solution for Entra OAuth authentication, enabling easy retrieval of access and refresh tokens
  ☆98Updated last month
• DefensiveOrigins / DO-LAB
  ☆47Updated last month
• msdirtbag / ADXFlowmaster
  ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.
  ☆37Updated 7 months ago
• jkerai1 / KQL-Queries
  KQL Queries
  ☆13Updated 2 weeks ago
• absolomb / FindMeAccess
  ☆90Updated last month
• MHaggis / SDDLMaker
  The home of the SDDLMaker
  ☆16Updated 4 months ago
• techspence / BadShares
  A tool to create randomly insecure file shares that also contain unsecured credential files
  ☆41Updated last year
• secureworks / BAADTokenBroker
  ☆79Updated last year