jangeisbauer / gundog
gundog - guided hunting in Microsoft Defender
☆52Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for gundog
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆52Updated 3 years ago
- Azure AD Incident Response☆24Updated 3 years ago
- ☆43Updated last month
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆36Updated 3 years ago
- ☆40Updated 3 years ago
- Community Tasks/Plans for PlumHound Queueing☆23Updated last year
- Microsoft GPO Readiness Lateral Movement Detection Tool☆16Updated last year
- Random tips and tricks RE: ransomware☆14Updated 3 years ago
- ☆40Updated last year
- These are some of the commands which I use frequently during Malware Analysis and DFIR.☆25Updated 10 months ago
- A series of PowerShell scripts to automate collection of forensic artefacts in most Incident Response environments☆64Updated 2 years ago
- ☆22Updated 2 years ago
- ☆25Updated 3 years ago
- ASR Configurator, Essentials and Atomic Testing☆36Updated 3 weeks ago
- ☆28Updated 4 years ago
- ☆48Updated last year
- Simple PowerShell script to enable process scanning with Yara.☆90Updated 2 years ago
- A script designed to test passwords against user accounts within an Active Directory environment, offering customizable Account Lockout T…☆14Updated last year
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆10Updated last year
- ☆13Updated 3 years ago
- Azure function to insert MISP data in to Azure Sentinel☆30Updated 2 years ago
- General Content☆20Updated 4 months ago
- Presentations☆17Updated 2 years ago
- Bloodhound Portable for Windows☆51Updated last year
- M365 Defender SOC Playbooks☆22Updated last year
- Baseline a Windows System against LOLBAS☆25Updated 6 months ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆35Updated last year