jangeisbauer / gundogLinks
gundog - guided hunting in Microsoft Defender
☆52Updated 4 years ago
Alternatives and similar repositories for gundog
Users that are interested in gundog are comparing it to the libraries listed below
Sorting:
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 4 years ago
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆53Updated 4 years ago
- ☆47Updated 2 months ago
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆24Updated last year
- Azure AD Incident Response☆25Updated 3 years ago
- ☆42Updated last year
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated 2 years ago
- ☆43Updated 4 years ago
- Bloodhound Portable for Windows☆51Updated 2 years ago
- ☆41Updated 2 years ago
- Jupyter notebooks☆25Updated 4 years ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆65Updated 3 years ago
- ESXi Cyber Security Incident Response Script☆23Updated 9 months ago
- Azure function to insert MISP data in to Azure Sentinel☆32Updated 2 years ago
- Ingesting Shodan Monitor Alerts to Microsoft Sentinel☆34Updated last year
- Send High & New Incidents to The Hive incident management Platform☆18Updated 4 years ago
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆14Updated last year
- Random tips and tricks RE: ransomware☆14Updated 3 years ago
- Kerberoast Detection Script☆30Updated 7 months ago
- List of PowerShell commands and commandlets that should be in your Powershel watchlist☆37Updated 3 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- ☆27Updated 4 years ago
- PowerSponse is a PowerShell module focused on targeted containment and remediation during incident response.☆38Updated 3 years ago
- Presentations☆17Updated 2 years ago
- A collection of hunting and blue team scripts. Mostly others, some my own.☆38Updated 2 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- Windows Security Logging☆43Updated 2 years ago
- A collection of useful PowerShell tools to collect, organize, and visualize Sysmon event data☆39Updated 5 years ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆40Updated 2 years ago
- Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…☆20Updated last year