Microsoft Threat Intelligence
☆214May 17, 2026Updated this week
Alternatives and similar repositories for mstic
Users that are interested in mstic are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- MSTIC Notebook Components☆35Sep 4, 2025Updated 8 months ago
- Microsoft Threat Intelligence Security Tools☆1,968May 11, 2026Updated last week
- ☆18Sep 3, 2021Updated 4 years ago
- Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.☆619Oct 17, 2025Updated 7 months ago
- Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more☆30Mar 31, 2026Updated last month
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- KQL Detections for Microsoft Sentinel and Microsoft 365 Defender☆21Nov 15, 2024Updated last year
- Import CrowdStrike Threat Intelligence into your instance of MISP☆54Mar 20, 2026Updated 2 months ago
- Powershell Based tool for gathering information related to O365 intrusions and potential Breaches☆939Mar 9, 2026Updated 2 months ago
- Home repo for documentation and links to resources☆12Jul 25, 2019Updated 6 years ago
- The Open Insurance Initiative☆11Aug 28, 2020Updated 5 years ago
- Forensic tool for extracting and analyzing Google DriveFS cached files and metadata.☆20May 9, 2025Updated last year
- ☆13Nov 10, 2020Updated 5 years ago
- Manage and maintain Defender XDR custom collection configuration☆37Nov 19, 2025Updated 6 months ago
- A sample about how to use the Azure Data Catalog REST API to fetch information from the Azure Data Catalog and how to register items with…☆10Nov 30, 2018Updated 7 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Cloud-native SIEM for intelligent security analytics for your entire enterprise.☆5,855Updated this week
- Sandbox evasion code snippets developped in Golang☆20Sep 19, 2022Updated 3 years ago
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆36May 11, 2026Updated last week
- command line tool to use the DNSDB Flexible Search API extensions.☆16Aug 5, 2024Updated last year
- This repo provides options to use dsregcmd information in managed code and powershell not by parsing the dsregcmd.exe commandline output.…☆13Nov 1, 2024Updated last year
- ☆43Updated this week
- A guide to using Azure Data Explorer and KQL for DFIR☆124May 16, 2022Updated 4 years ago
- AADInternals PowerShell module for administering Azure AD and Office 365☆1,645Sep 30, 2025Updated 7 months ago
- This is a VxLAN PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion☆30Jul 21, 2025Updated 10 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Training and support materials for MSTICPy☆18Jun 27, 2023Updated 2 years ago
- Visualize Microsoft Defender XDR process trees and security events☆33Aug 24, 2025Updated 8 months ago
- This repository is for Indicators of Compromise (IOCs) from Zscaler ThreatLabz public reports☆79Jan 26, 2026Updated 3 months ago
- ☆29May 8, 2023Updated 3 years ago
- Collection of KQL queries☆1,635Jan 29, 2026Updated 3 months ago
- ☆108Dec 9, 2025Updated 5 months ago
- ☆647Jun 6, 2023Updated 2 years ago
- A small CTFd plugin to send notifications about solves and admin announcements to Slack/Discord/Telegram☆14Oct 20, 2021Updated 4 years ago
- Redis Client for COM+☆19Jun 22, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆17Mar 28, 2023Updated 3 years ago
- KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…☆1,694May 10, 2026Updated last week
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆886May 11, 2026Updated last week
- Powershell modules and commands that come in handy for pentests and red team assessments.☆22Oct 31, 2018Updated 7 years ago
- An AI-powered plugin for Caldera that orchestrates long-running LLM workflows to automatically create adversary emulation abilities and p…☆29May 6, 2026Updated 2 weeks ago
- Synapse Central Intelligence System☆437May 15, 2026Updated last week
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆19Jan 28, 2021Updated 5 years ago