microsoft / SecCon-FrameworkLinks
Security configuration is complex. With thousands of group policies available in Windows, choosing the “best” setting is difficult. It’s not always obvious which permutations of policies are required to implement a complete scenario, and there are often unintended consequences of some security lockdowns. The SECCON Baselines divide configuratio…
☆282Updated 2 years ago
Alternatives and similar repositories for SecCon-Framework
Users that are interested in SecCon-Framework are comparing it to the libraries listed below
Sorting:
- MDATP☆459Updated last year
- Windows OS Hardening with PowerShell DSC☆283Updated last year
- Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers☆263Updated last year
- The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…☆447Updated 2 years ago
- Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.☆573Updated 9 months ago
- Building environments to replicate small networks and deploy applications☆327Updated 9 months ago
- Microsoft Sentinel SOC Operations☆261Updated last year
- KQL queries for Advanced Hunting☆176Updated 5 years ago
- Powershell Based tool for gathering information related to O365 intrusions and potential Breaches☆890Updated 7 months ago
- The Microsoft Defender for Office 365 Recommended Configuration Analyzer (ORCA)☆348Updated last year
- Get started fast with a built out lab, built from scratch via Azure Resource Manager (ARM) and Desired State Configuration (DSC), to test…☆237Updated 5 years ago
- Contact: CRT@crowdstrike.com☆742Updated 2 years ago
- Robust and practical application control for Windows☆665Updated 3 years ago
- Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…☆226Updated 8 months ago
- Timeline of Active Directory changes with replication metadata☆515Updated 7 months ago
- EventList☆377Updated 4 years ago
- A Windows event logging and collection baseline focused on finding balance between forensic value and optimising retention.☆287Updated 4 years ago
- FBPro Audit Test Automation Package allows you to create compliance reports for your systems. The resulting HTML-reports provide a transp…☆137Updated 2 weeks ago
- Tooling for assessing an Azure AD tenant state and configuration☆818Updated last year
- A PowerShell script that automates the security assessment of Microsoft 365 environments.☆633Updated 6 months ago
- PowerShell for CrowdStrike's OAuth2 APIs☆435Updated this week
- ☆120Updated 2 months ago
- Various tools used to monitor and troubleshoot Azure Sentinel data☆30Updated last year
- PowerShell module for Azure Sentinel☆232Updated 3 years ago
- Powershell module for Microsoft Cloud App Security☆85Updated 2 years ago
- This script will enable you to reset the krbtgt account password and related keys while minimizing the likelihood of Kerberos authenticat…☆441Updated last year
- A repo for documents containing curated list of health and (in the future security) checks to be run against a Windows Active-Directory d…☆166Updated 6 years ago
- The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…☆264Updated 4 years ago
- KITT - An Open Source PowerShell O365 Business Email Compromise Investigation Tool☆116Updated 5 years ago
- ☆330Updated last month