microsoft / Scalable-Infrastructure-for-Investigation-and-Incident-ResponseLinks
Powershell Scripts to automatically deploy an image of a prebuilt VM (up-to-date and with pre-deployed tools and apps) to every region you require.
☆18Updated 2 years ago
Alternatives and similar repositories for Scalable-Infrastructure-for-Investigation-and-Incident-Response
Users that are interested in Scalable-Infrastructure-for-Investigation-and-Incident-Response are comparing it to the libraries listed below
Sorting:
- Tools to create a Native Windows Audit Collection Platform. Active Directory example provided☆79Updated 5 years ago
- Simple GUI for Microsoft Defender for Endpoint API machine actions in PowerShell.☆36Updated 2 years ago
- Microsoft Defender ATP Manageability and Maintenance scripts☆27Updated 2 years ago
- PowerShell Module for managing Microsoft Defender Advanced Threat Protection☆73Updated 2 years ago
- Powershell module for Microsoft Cloud App Security☆85Updated last year
- A collection of things I've created or found that I think is useful for Azure Sentinel.☆19Updated 4 months ago
- This repository is for public files shared by the Microsoft Information Protection Team☆25Updated 4 years ago
- Active Directory Audit Tools for IT Audits☆80Updated 2 months ago
- This powerbi dashboards will help the Security team to analyze KBs, delivered monthly by Microsoft☆12Updated 3 years ago
- Solution for Auditing LAPS usage in an Active Directory environment.☆36Updated 9 years ago
- This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommen…☆53Updated last year
- The repository contains artifacts to create and publish reports, alerts, and dashboards based on Azure AD B2C logs. These artifacts can a…☆65Updated 2 years ago
- Evaluating and Reporting on Azure Active Directory/Active Directory Users Security Posture☆29Updated 6 years ago
- Security-Focused O365 Management and Log Scripts☆62Updated 2 years ago
- Microsoft Defender Advanced Threat Protection☆47Updated 2 months ago
- A collection of scripts and works related to Azure Sentinel☆42Updated 3 years ago
- Little PowerShell module to extract PowerShell scripts that no longer exists on disk but were run and are still in Event Logs.☆41Updated 4 years ago
- Various tools used to monitor and troubleshoot Azure Sentinel data☆30Updated 9 months ago
- Collect / retrieve Office365, AzureAD and DLP audit logs and output to PRTG, Azure Log Analytics Workspace, SQL, Graylog, Fluentd, and/or…☆114Updated last year
- Public repo for CloudAppSecurityDocs-pr☆111Updated 7 months ago
- AdmPwd.E client and support tools☆32Updated 4 years ago
- Automation around Entra ID☆37Updated 2 weeks ago
- Alex Verboon PowerShell Code☆39Updated 5 years ago
- Public content repo for ATA documentation in OPS☆74Updated 5 months ago
- Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…☆41Updated 4 years ago
- Defender for Endpoint☆27Updated last year
- Unofficial PowerShell module for easy interface with the Microsoft Graph Security APIs.☆45Updated 2 years ago
- Workbooks for Azure Sentinel☆60Updated last year
- Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …☆59Updated 2 years ago
- Provides various Windows Server Active Directory (AD) security-focused reports.☆99Updated 3 weeks ago