Get started fast with a built out lab, built from scratch via Azure Resource Manager (ARM) and Desired State Configuration (DSC), to test out Microsoft's security products.
☆237Jun 25, 2020Updated 6 years ago
Alternatives and similar repositories for DefendTheFlag
Users that are interested in DefendTheFlag are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CONVEX is a group of CTFs that are independently deployable into participant Azure environments.☆140May 16, 2022Updated 4 years ago
- Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK☆1,077Nov 28, 2024Updated last year
- Powershell module for Microsoft Cloud App Security☆86Aug 29, 2023Updated 2 years ago
- Azure Red Team tool for graphing Azure and Azure Active Directory objects☆1,706Jan 8, 2024Updated 2 years ago
- This repository is used to store the Azure Information Protection Deployment Acceleration Guide☆29May 31, 2019Updated 7 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- SNIcat☆128Aug 19, 2021Updated 4 years ago
- DEPRECATED -> GO TO https://github.com/microsoft/Microsoft-threat-protection-Hunting-Queries☆20Apr 22, 2020Updated 6 years ago
- Targeted Payload Execution☆101Apr 9, 2020Updated 6 years ago
- Sample queries for Advanced hunting in Microsoft 365 Defender☆2,078Feb 17, 2022Updated 4 years ago
- Notebooks created to attack and secure Active Directory environments☆27Nov 18, 2019Updated 6 years ago
- This repo contains workshop material delivered at #nullcon2020☆16Mar 6, 2020Updated 6 years ago
- Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 en…☆1,430Dec 27, 2022Updated 3 years ago
- A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…☆642Mar 21, 2025Updated last year
- Microsoft Flow Attack Framework☆23Nov 14, 2019Updated 6 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- This script validates the most common Conditional Access policies in Microsoft 365.☆10May 27, 2024Updated 2 years ago
- Iterative AD discovery toolkit for offensive operations☆86Mar 16, 2020Updated 6 years ago
- Cloud Templates and scripts to deploy mordor environments☆130Mar 3, 2021Updated 5 years ago
- Building environments to replicate small networks and deploy applications☆335Jan 9, 2026Updated 5 months ago
- Execute Mimikatz with different technique☆51Nov 8, 2021Updated 4 years ago
- A collection of scripts for assessing Microsoft Azure security☆2,398Mar 15, 2026Updated 3 months ago
- This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and …☆2,533Apr 20, 2026Updated 2 months ago
- A collection of Azure AD/Entra tools for offensive and defensive security purposes☆2,646May 21, 2026Updated last month
- ☆71Nov 20, 2020Updated 5 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Fetching data from system☆11Jun 18, 2017Updated 9 years ago
- This repository is for public files shared by the Microsoft Information Protection Team☆25Jan 6, 2021Updated 5 years ago
- An ELK environment containing interesting security datasets.☆136May 11, 2020Updated 6 years ago
- Re-play Security Events☆1,773Mar 20, 2024Updated 2 years ago
- ☆53Oct 20, 2020Updated 5 years ago
- Welcome to the Microsoft Defender for Cloud community repository☆1,916Jun 16, 2026Updated last week
- Bloodhound Reporting for Blue and Purple Teams☆1,294Nov 15, 2025Updated 7 months ago
- PowerShell framework to assess Azure security☆1,287Oct 18, 2025Updated 8 months ago
- A toolkit to attack Office365☆1,124Nov 6, 2020Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Cobalt Strike log state tracking, parsing, and storage☆24Jul 18, 2019Updated 6 years ago
- A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365☆792Oct 29, 2022Updated 3 years ago
- HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…☆17Jun 11, 2024Updated 2 years ago
- Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.☆491Feb 16, 2019Updated 7 years ago
- Microsoft External Attack Tool☆178Dec 8, 2022Updated 3 years ago
- Deploy customizable Active Directory labs in Azure - automatically.☆426Dec 5, 2024Updated last year
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆149Sep 7, 2020Updated 5 years ago