microsoft / Scalable-Infrastructure-for-Investigation-and-Incident-Response

Related projects ⓘ

Alternatives and complementary repositories for Scalable-Infrastructure-for-Investigation-and-Incident-Response

• HASecuritySolutions / Sysmon-Manager
  This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler
  ☆12Updated 3 years ago
• Xoke / SysAdmin-Tools
  Various scripts to help you out. Mostly very scrappy, but functional. I realise Write-Host is not the way to do things, but I wrote som…
  ☆27Updated 2 years ago
• microsoft / CompliancePartnerWorkshops
  Scripts and resources to support the Compliance Build-Intent engagements at https://aka.ms/mci/workshops
  ☆20Updated 2 months ago
• securethelogs / Powershell
  ☆13Updated 3 years ago
• microsoft / ASDET
  ☆17Updated 3 years ago
• mitre / microsoft-azure-cis-foundations-baseline
  (WIP) CIS Microsoft Azure Foundations Benchmark
  ☆15Updated 2 years ago
• chihebchebbi / Azure-Sentinel-Report-Generator
  ☆14Updated 3 years ago
• swimlane / PSCVSS
  A Windows PowerShell & PowerShell Core Module to calculate a CVSS3 Score based on a Vector string
  ☆12Updated last year
• microsoft / Azure-Advanced-Threat-Protection
  Additional Resources to improve Customer Experience with Azure Advanced Threat Protection
  ☆21Updated last year
• mitre / emasser
  eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…
  ☆35Updated last month
• Cyb3rWard0g / infosec-well-done
  A few quick recipes for those that do not have much time during the day
  ☆21Updated 3 weeks ago
• counteractive / incident-response-collector
  ☆14Updated 4 years ago
• eshlomo1 / Azure-AD-Incident-Response
  Azure AD Incident Response
  ☆24Updated 3 years ago
• azsec / azure-sentinel-tools
  A collection of scripts and works related to Azure Sentinel
  ☆41Updated 2 years ago
• banhao / AutoSpamEmailScan
  AutoSpamEmailScan.ps1 is used to monitor a specific mailbox that enterprise users can forward suspicious spam emails to a specific mailbo…
  ☆16Updated last year
• B2dfir / Free-Incident-Response-Management-and-Documentation-Workbook
  A free incident response management and documentation workbook
  ☆21Updated 6 years ago
• SecureHats / SecureHacks
  ☆11Updated last year
• froxxon / Powershell
  A mixed repository of Powershell scripts...
  ☆49Updated 3 years ago
• HASecuritySolutions / WECComputerGroupMgmt
  ☆11Updated 3 years ago
• microsoft / PAWTools
  Provides tools that support implementing Privileged Access Workstations in a Active Directory Forest
  ☆30Updated last year
• microsoft / microsoft-defender-for-endpoint-manageability
  Microsoft Defender ATP Manageability and Maintenance scripts
  ☆27Updated last year
• microsoft / mde-api-gui
  Simple GUI for Microsoft Defender for Endpoint API machine actions in PowerShell.
  ☆31Updated last year
• microsoft / secmgmt-insights-connector
  Power BI connector that provides insight into the current state of how Microsoft 365 is configured and whether best practices have been i…
  ☆13Updated 4 years ago
• guardsight / gsvsoc_mission-model
  Incident Response Report Using GitHub-Sphinx
  ☆19Updated 5 years ago
• olafhartong / Sentinel-template-parser
  Azure Sentinel Template parser
  ☆15Updated 4 years ago
• microsoft / securitydev
  Build connected security experiences. Starting point to share code, libraries, notebooks, workbooks, and queries for connected experience…
  ☆22Updated 7 months ago
• huntresslabs / free-tools
  ☆11Updated 3 years ago
• cisagov / orchestrator
  Orchestrate gatherer, scanner, saver, and trustymail_reporter
  ☆14Updated 2 weeks ago