MAES: M365 Analyzer & Extractor Suite Po
☆33Feb 14, 2026Updated 2 weeks ago
Alternatives and similar repositories for maes-platform
Users that are interested in maes-platform are comparing it to the libraries listed below
Sorting:
- MISP to Microsoft Defender integration☆16Feb 24, 2026Updated last week
- Is a portable forensic tool for analyzing Windows logs, pre-organized according to the methodology outlined in this job: https://cybersec…☆15Jul 19, 2025Updated 7 months ago
- Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE☆33May 25, 2024Updated last year
- This tool parses Windows EVTX logs to extract login and logout sessions from a security.evtx file. It uses a Tkinter GUI to let you selec…☆31Feb 22, 2025Updated last year
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆40Oct 30, 2024Updated last year
- Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more☆30Nov 26, 2025Updated 3 months ago
- ConditionalAccessIQ streamlines this process by providing automatic version control, change tracking, and visual comparisons of your Cond…☆59Jun 30, 2025Updated 8 months ago
- This repo aims to help you decipher the UAL from a Digital Forensics & Incident Response (DFIR) perspective. The UAL is the Microsoft 365…☆64May 12, 2024Updated last year
- Repository for Cortex XDR and Cortex XSIAM XQL queries and more!☆40Jun 7, 2024Updated last year
- ESXi Cyber Security Incident Response Script☆25Sep 4, 2024Updated last year
- Browse Windows Prefetch versions: 17,23,26,30v1/2,31 & some of SuperFetch .7db/.db's☆64Dec 18, 2024Updated last year
- Maintain Tier 0 users. This script take care all Tier 0 users are in the correct OU or in the default user container and add the Kerberos…☆65Apr 1, 2025Updated 11 months ago
- A PowerShell script to audit privileged users in Microsoft Entra ID and Azure with detailed reporting☆52Sep 29, 2025Updated 5 months ago
- ☆34Jan 29, 2025Updated last year
- MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore☆65Dec 26, 2022Updated 3 years ago
- ☆13Apr 6, 2025Updated 10 months ago
- Automatic/Custom Destinations & LNK (MS-SHLLINK) Browser☆44Feb 21, 2026Updated last week
- PowerShell-based Automation of Defender for Endpoint☆187Jul 3, 2025Updated 8 months ago
- ☆86Feb 11, 2026Updated 2 weeks ago
- Conditional Access baseline for October 2025☆93Nov 26, 2025Updated 3 months ago
- Interactive Microsoft Graph search tool using console GUI for various Microsoft 365 and Azure AD object types.☆49Apr 8, 2025Updated 10 months ago
- This repository contains a comprehensive set of Conditional Access (CA) policies and PowerShell management tools for Microsoft Entra ID (…☆104Mar 11, 2025Updated 11 months ago
- P.S.E.U.D.O. optimizes the macOS Platform SSO registration experience.☆37Updated this week
- This project contains a **test executable** specifically designed to trigger incidents in **Microsoft Defender for Endpoint (MDE)**. It…☆14Jul 20, 2025Updated 7 months ago
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆577Dec 6, 2025Updated 2 months ago
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆768Jan 15, 2026Updated last month
- Azure Managed Identity Permissions Tool, a new PowerShell tool that simplifies and streamlines the management of Managed Identity permiss…☆128Jan 26, 2026Updated last month
- ☆12Oct 9, 2022Updated 3 years ago
- EvtXHunt is an Autopsy plugin that is able to analyze Windows EVTX logs against a library of SIGMA rules.☆15Nov 7, 2021Updated 4 years ago
- A collection of Script for Red Team & Incidence Response☆11Jun 30, 2022Updated 3 years ago
- ☆16Aug 25, 2025Updated 6 months ago
- Generates a detailed CSV file containing Sigma Rules statistics for each service or category, and each level, offering a holistic view of…��☆10Dec 22, 2023Updated 2 years ago
- A simple server to act as a Veeam "honeypot" providing alerting for network scans for Veeam services☆16Aug 31, 2025Updated 6 months ago
- inspect EntraID SCIM flows for troubleshooting☆30Nov 23, 2025Updated 3 months ago
- MP3Tag scripts for pulling data from Metal Archives☆12May 17, 2025Updated 9 months ago
- Tool for creating reports on Entra ID Role Assignments☆101Apr 12, 2024Updated last year
- CLI generator for Velociraptor offline collector☆16Oct 10, 2025Updated 4 months ago
- ☆17Updated this week
- PowerShell-based Windows Server Security Audit Engine by Cyb3rint3l Labs. Measures alignment with the NIS2 directive and maps findings to…☆40Feb 1, 2026Updated last month