Alternatives and similar repositories for azure_rbac_audit:

Users that are interested in azure_rbac_audit are comparing it to the libraries listed below

• Kaidja / EntraID
  Automation around Entra ID
  ☆36Updated 4 months ago
• JeffMichelmore / MDEKit
  ☆41Updated last year
• emiliensocchi / azure-tiering
  Azure administrative tiering based on known attack paths
  ☆76Updated this week
• soteria-security / ADInspect
  A PowerShell script that automates the security assessment of Microsoft Active Directory environments.
  ☆65Updated 2 years ago
• Corissalea / KQL-and-Workbooks
  Sharing presentation slides and workbook templates that can be useful to others to learn more about Azure Active Directory!
  ☆20Updated 8 months ago
• f-bader / EntraIDAuditLogToMicrosoftGraph
  A list of Entra ID (Azure AD) Audit event names and the corresponding Microsoft Graph Request Uri
  ☆28Updated 7 months ago
• olafhartong / WDACme
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆28Updated 2 years ago
• Kaidja / Defender-for-Endpoint
  Defender for Endpoint
  ☆27Updated 9 months ago
• thalpius / Microsoft-Defender-for-Identity-Configuration-Checker
  ☆44Updated last year
• Trimarc / Invoke-TrimarcADChecks
  The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…
  ☆50Updated last year
• eshlomo1 / Azure-AD-Incident-Response
  Azure AD Incident Response
  ☆25Updated 3 years ago
• TheCloudScout / m365defender-adx
  ☆19Updated last year
• Kaidja / Microsoft-Sentinel
  Microsoft Sentinel related content
  ☆37Updated 3 months ago
• soteria-security / MFArcade
  PowerShell script to create reports of M365 User Multi-factor Authentication Registration Status and Highlight MFA Related Conditional Ac…
  ☆13Updated 11 months ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆105Updated 4 months ago
• msdirtbag / ADXFlowmaster
  ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.
  ☆36Updated 5 months ago
• Fortigi / ServerHardening_DSC
  CIS & Azure Security Center Hardening recommendations implemented in PowerShell DSC from Azure Automation
  ☆34Updated 3 years ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆39Updated last week
• securesloth / noCAP
  Lightweight security tool for auditing your organization's Conditional Access Policies (CAPs) in Microsoft Entra ID for potential misconf…
  ☆69Updated 2 months ago
• sap8899 / reportly
  Reportly is an AzureAD user activity report tool.
  ☆92Updated last year
• PaulHCode / RecurringADChecks
  ☆13Updated 3 years ago
• mr-r3b00t / KQL
  This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet
  ☆12Updated 2 months ago
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆72Updated 6 months ago
• h0ffayyy / MicrosoftSentinelStuff
  Misc. content for Microsoft Sentinel
  ☆18Updated last year
• microsoft / MSEntraIDProtectionGuidance
  MS Entra ID Protection Guidance
  ☆20Updated last year
• uniQuk / caReports
  Conditional Access Reporting
  ☆26Updated 3 weeks ago
• itpro-tips / ActiveDirectory-Toolbox
  ☆45Updated last week
• msdirtbag / MDE-Quickstart
  MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore
  ☆66Updated 2 years ago
• zh54321 / GraphPreConsentExplorer
  A comprehensive list of usable Entra ID first-party clients with pre-consented Microsoft Graph scopes, in a simple YAML-file explorable w…
  ☆103Updated last month
• LearningKijo / ResearchDev
  ResearchDev - XDR & SIEM Detection
  ☆64Updated last week