microsoft / Azure-Threat-Research-MatrixLinks
☆75Updated last year
Alternatives and similar repositories for Azure-Threat-Research-Matrix
Users that are interested in Azure-Threat-Research-Matrix are comparing it to the libraries listed below
Sorting:
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 4 years ago
- ☆43Updated 4 years ago
- BloodHound with a twist of cloud☆81Updated 5 years ago
- Extensible Azure Security Tool - Documentation☆82Updated 2 years ago
- gundog - guided hunting in Microsoft Defender☆52Updated 4 years ago
- ☆47Updated 3 months ago
- Azure AD enumeration over MS Graph☆82Updated 2 years ago
- Lateral Movement graph for Azure Active Directory☆123Updated 2 years ago
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆71Updated 7 months ago
- Kerberoast Detection Script☆30Updated 9 months ago
- ☆108Updated 2 years ago
- Audit program for AzureAD☆150Updated 2 years ago
- Slides of my public talks☆56Updated last year
- ☆25Updated 3 years ago
- Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token☆26Updated 2 years ago
- MDE relies on some of the Audit settings to be enabled☆98Updated 3 years ago
- Azure AD Identity Protection Cookie Spoofing☆34Updated last year
- GoldenSAML Attack Libraries and Framework☆73Updated last year
- ☆49Updated last year
- ☆42Updated 3 weeks ago
- ☆18Updated 2 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆60Updated 2 years ago
- ☆70Updated last year
- Silver SAML forgery tool☆54Updated last year
- Presentations from Conferences☆29Updated 10 months ago
- Reportly is an AzureAD user activity report tool.☆95Updated last year
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆95Updated last week
- Enumerate Microsoft 365 Groups in a tenant with their metadata☆53Updated 4 years ago
- Ingesting Shodan Monitor Alerts to Microsoft Sentinel☆34Updated last year
- Cyber Range including Velociraptor + HELK system with a Windows VM for security testing and R&D. Azure and AWS terraform support.☆134Updated 2 years ago