microsoft / Scalable-Infrastructure-for-Investigation-and-Incident-ResponseLinks
Powershell Scripts to automatically deploy an image of a prebuilt VM (up-to-date and with pre-deployed tools and apps) to every region you require.
☆20Updated 2 years ago
Alternatives and similar repositories for Scalable-Infrastructure-for-Investigation-and-Incident-Response
Users that are interested in Scalable-Infrastructure-for-Investigation-and-Incident-Response are comparing it to the libraries listed below
Sorting:
- Public content repo for ATA documentation in OPS☆75Updated 11 months ago
- ☆19Updated 4 years ago
- Azure AD Incident Response☆27Updated 4 years ago
- Cloud-native SIEM for intelligent security analytics for your entire enterprise.☆20Updated 2 years ago
- Tools to create a Native Windows Audit Collection Platform. Active Directory example provided☆77Updated 6 years ago
- A Windows PowerShell & PowerShell Core Module to calculate a CVSS3 Score based on a Vector string☆12Updated 3 years ago
- ☆31Updated 2 years ago
- Advanced Hunting Queries for Microsoft Security Products☆108Updated 3 years ago
- PowerShell Module for managing Microsoft Defender Advanced Threat Protection☆75Updated 3 years ago
- Simple GUI for Microsoft Defender for Endpoint API machine actions in PowerShell.☆39Updated 3 years ago
- This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommen…☆51Updated 4 months ago
- FBPro Audit Test Automation Package allows you to create compliance reports for your systems. The resulting HTML-reports provide a transp…☆161Updated this week
- Automation around Entra ID☆38Updated 6 months ago
- Provides various Windows Server Active Directory (AD) security-focused reports.☆107Updated last week
- The repository contains artifacts to create and publish reports, alerts, and dashboards based on Azure AD B2C logs. These artifacts can a…☆66Updated 2 years ago
- Various tools used to monitor and troubleshoot Azure Sentinel data☆31Updated last year
- Solution for Auditing LAPS usage in an Active Directory environment.☆36Updated 10 years ago
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆49Updated 4 months ago
- This repository is for a beginners PowerShell training course I am holding in central Missouri.☆20Updated 8 years ago
- A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.☆39Updated 3 years ago
- ☆26Updated 2 years ago
- WEFTools☆14Updated 5 years ago
- KQL example queries for working in Azure☆36Updated 2 months ago
- Solution to deploy a Sentinel playground demo environment☆58Updated 2 years ago
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 4 years ago
- Little PowerShell module to extract PowerShell scripts that no longer exists on disk but were run and are still in Event Logs.☆40Updated 5 years ago
- ClientInspectorV2 - Unleashing the power of Azure LogAnalytics, Azure Data Collection Rules, Log Ingestion API by doing client inventory …☆25Updated 2 years ago
- Microsoft Defender ATP Manageability and Maintenance scripts☆29Updated 2 years ago
- Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…☆41Updated 5 years ago
- Collection of scripts to extract Azure resource information to support security compliance audit.☆22Updated 4 years ago