microsoft / SecCon-FrameworkLinks
Security configuration is complex. With thousands of group policies available in Windows, choosing the “best” setting is difficult. It’s not always obvious which permutations of policies are required to implement a complete scenario, and there are often unintended consequences of some security lockdowns. The SECCON Baselines divide configuratio…
☆285Updated 2 years ago
Alternatives and similar repositories for SecCon-Framework
Users that are interested in SecCon-Framework are comparing it to the libraries listed below
Sorting:
- MDATP☆460Updated 10 months ago
- Microsoft Sentinel SOC Operations☆255Updated 10 months ago
- The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…☆435Updated last year
- Get started fast with a built out lab, built from scratch via Azure Resource Manager (ARM) and Desired State Configuration (DSC), to test…☆236Updated 4 years ago
- Windows OS Hardening with PowerShell DSC☆278Updated last year
- Tooling for assessing an Azure AD tenant state and configuration☆794Updated 11 months ago
- A PowerShell script that automates the security assessment of Microsoft 365 environments.☆619Updated last month
- Powershell Based tool for gathering information related to O365 intrusions and potential Breaches☆848Updated 2 months ago
- Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.☆569Updated 4 months ago
- Building environments to replicate small networks and deploy applications☆323Updated 4 months ago
- Contact: CRT@crowdstrike.com☆729Updated 2 years ago
- Windows Event Forwarding subscriptions, configuration files and scripts that assist with implementing ACSC's protect publication, Technic…☆220Updated 3 months ago
- KQL queries for Advanced Hunting☆172Updated 5 years ago
- The Microsoft Defender for Office 365 Recommended Configuration Analyzer (ORCA)☆334Updated 11 months ago
- PowerShell module for Azure Sentinel☆234Updated 2 years ago
- Creating a hardened "Blue Forest" with Server 2016/2019 Domain Controllers☆263Updated 8 months ago
- EventList☆376Updated 4 years ago
- Robust and practical application control for Windows☆652Updated 2 years ago
- A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-pur…☆575Updated 2 months ago
- Tools for Microsoft cloud fans☆347Updated 6 months ago
- The Business Email Compromise Guide sets out to describe 10 steps for performing a Business Email Compromise (BEC) investigation in an Of…☆255Updated 4 years ago
- ☆113Updated last month
- Azure Sentinel KQL☆447Updated 8 months ago
- The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel☆248Updated last week
- Additional Resources to improve Customer Experience with Microsoft Cloud App Security☆146Updated 2 years ago
- This script will enable you to reset the krbtgt account password and related keys while minimizing the likelihood of Kerberos authenticat…☆422Updated last year
- Additional resources to improve customer experience with Microsoft Defender for Identity☆106Updated 2 weeks ago
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆635Updated this week
- CA Optics - Azure AD Conditional Access Gap Analyzer☆335Updated 9 months ago
- The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)☆263Updated 3 years ago