microsoft / Azure-Threat-Research-Matrix
☆70Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for Azure-Threat-Research-Matrix
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆36Updated 3 years ago
- ☆43Updated 3 weeks ago
- ☆40Updated 3 years ago
- Extensible Azure Security Tool - Documentation☆81Updated last year
- Azure AD enumeration over MS Graph☆80Updated last year
- gundog - guided hunting in Microsoft Defender☆52Updated 3 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆57Updated 2 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆60Updated 7 months ago
- ASR Configurator, Essentials and Atomic Testing☆35Updated last week
- ☆13Updated 3 years ago
- ☆22Updated 2 years ago
- AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…☆100Updated 6 months ago
- Lateral Movement graph for Azure Active Directory☆122Updated last year
- ATT&CK Powered Suit is a browser extension that puts the complete MITRE ATT&CK® knowledge base at your fingertips with text search, conte…☆72Updated this week
- Ingesting Shodan Monitor Alerts to Microsoft Sentinel☆33Updated last year
- Supporting materials for my "Intelligence-Led Adversarial Threat Modelling with VECTR" workshop☆56Updated 3 weeks ago
- This repo is where I store my Threat Hunting ideas/content☆85Updated last year
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆124Updated 2 years ago
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆51Updated last year
- Kerberoast Detection Script☆30Updated last week
- Tools for attacking Azure Function Apps☆63Updated last week
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆31Updated 6 months ago
- BloodHound with a twist of cloud☆73Updated 4 years ago
- ☆105Updated last year
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆52Updated 3 years ago
- The ultimate solution for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆22Updated 2 months ago
- Reportly is an AzureAD user activity report tool.☆89Updated last year
- This repository aims to collect and document indicators from the different C2's listed in the C2-Matrix☆72Updated 2 years ago
- Simple PowerShell script to enable process scanning with Yara.☆90Updated 2 years ago