microsoft / SecCon-FrameworkLinks
Security configuration is complex. With thousands of group policies available in Windows, choosing the “best” setting is difficult. It’s not always obvious which permutations of policies are required to implement a complete scenario, and there are often unintended consequences of some security lockdowns. The SECCON Baselines divide configuratio…
☆283Updated 3 years ago
Alternatives and similar repositories for SecCon-Framework
Users that are interested in SecCon-Framework are comparing it to the libraries listed below
Sorting:
- Windows OS Hardening with PowerShell DSC☆289Updated 2 years ago
- MDATP☆456Updated last year
- Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers☆268Updated last year
- Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.☆584Updated last year
- The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…☆451Updated 2 years ago
- Microsoft Sentinel SOC Operations☆266Updated last year
- KQL queries for Advanced Hunting☆176Updated 6 years ago
- Building environments to replicate small networks and deploy applications☆331Updated 3 weeks ago
- Contact: CRT@crowdstrike.com☆747Updated 2 years ago
- Get started fast with a built out lab, built from scratch via Azure Resource Manager (ARM) and Desired State Configuration (DSC), to test…☆238Updated 5 years ago
- A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.☆292Updated 4 years ago
- The Microsoft Defender for Office 365 Recommended Configuration Analyzer (ORCA)☆355Updated last year
- Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…☆227Updated last year
- Robust and practical application control for Windows☆682Updated 3 years ago
- Powershell Based tool for gathering information related to O365 intrusions and potential Breaches☆921Updated 11 months ago
- EventList☆378Updated 4 years ago
- FBPro Audit Test Automation Package allows you to create compliance reports for your systems. The resulting HTML-reports provide a transp…☆162Updated last week
- PowerShell for CrowdStrike's OAuth2 APIs☆449Updated 2 weeks ago
- Tooling for assessing an Azure AD tenant state and configuration☆829Updated last year
- PowerShell module for Azure Sentinel☆233Updated 3 years ago
- ☆122Updated 2 weeks ago
- A PowerShell script that automates the security assessment of Microsoft 365 environments.☆646Updated 9 months ago
- Public repo to sync with security-pr☆242Updated this week
- Repository with Sample KQL Query examples for Threat Hunting☆216Updated 3 years ago
- Logmira by Blumira has been created by Amanda Berlin as a helpful download of Microsoft Windows Domain Group Policy Object settings.☆62Updated last year
- Various tools used to monitor and troubleshoot Azure Sentinel data☆31Updated last year
- CA Optics - Azure AD Conditional Access Gap Analyzer☆334Updated last year
- Timeline of Active Directory changes with replication metadata☆522Updated 10 months ago
- DEPRECATED -> GO TO https://github.com/microsoft/Microsoft-threat-protection-Hunting-Queries☆21Updated 5 years ago
- A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…☆623Updated 10 months ago