TIM is a Kusto investigation platform that enables a user to quickly pivot between data sources; annotate their findings; and promotes collaboration through shared queries (pivots) and centralized tagged events.
☆23Aug 7, 2024Updated last year
Alternatives and similar repositories for tim-data-investigate-platform
Users that are interested in tim-data-investigate-platform are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Azure AD (Entra ID) enumeration tool. Find related domains and tenant information in a simple way.☆35Oct 4, 2024Updated last year
- ☆19Jan 31, 2025Updated last year
- A not so awesome list of adversary emulation gems for aspiring red/blue/purple teamers☆16Jul 19, 2022Updated 3 years ago
- A catalog of services that can be publicly exposed within different cloud providers.☆14Aug 30, 2024Updated last year
- IR drill plateform☆23Jul 29, 2025Updated 7 months ago
- Microsoft Defender for Endpoint PowerShell module☆12Dec 28, 2023Updated 2 years ago
- Triage automation for suspect URLs☆13Jul 23, 2019Updated 6 years ago
- MS Entra ID Protection Guidance☆22Apr 2, 2024Updated last year
- yaa - yaml search for humans☆12Dec 8, 2025Updated 3 months ago
- ☆18Mar 26, 2025Updated 11 months ago
- Living off the False Positive!☆42Jan 31, 2025Updated last year
- Command-line tool for discovering SaaS platforms a company uses via DNS enumeration☆39Jul 23, 2025Updated 8 months ago
- CloudGrappler is a purpose-built tool designed for effortless querying of high-fidelity and single-event detections related to well-known…☆266Nov 21, 2025Updated 4 months ago
- Small visualizator for PE files☆70Sep 20, 2023Updated 2 years ago
- ☆21May 8, 2022Updated 3 years ago
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆39Oct 30, 2024Updated last year
- ☆51Nov 25, 2025Updated 3 months ago
- This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…☆18Feb 16, 2025Updated last year
- Cisco IOS XE implant scanning & detection (CVE-2023-20198, CVE-2023-20273)☆41Nov 7, 2023Updated 2 years ago
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆51Sep 22, 2025Updated 6 months ago
- An open-source command-line tool for cybersecurity reporting automation and a configuration language for reusable templates. Reporting-as…☆67Jul 6, 2025Updated 8 months ago
- ☆18Nov 24, 2020Updated 5 years ago
- self-hosted Azure OSINT tool☆33Jun 24, 2025Updated 8 months ago
- Indicators of compromise, YARA rules, and Python scripts to supplement the SANS CTI Summit 2021 talk: "xStart when you're ready".☆14Jul 12, 2021Updated 4 years ago
- Scans a list of raccoon servers from Tria.ge and extracts the config☆15Jun 5, 2023Updated 2 years ago
- Parse Microsoft shim databases☆32Jan 8, 2025Updated last year
- Method of finding interesting domains using keywords + JARMs☆13Jan 30, 2023Updated 3 years ago
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆284Mar 20, 2025Updated last year
- Query Kusto like a pro from the comfort of your Jupyter notebook☆32Sep 25, 2024Updated last year
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆119Aug 19, 2025Updated 7 months ago
- A collection of CVEs weaponized by ransomware operators☆129Oct 13, 2025Updated 5 months ago
- ☆107Dec 9, 2025Updated 3 months ago
- Collection of Docker honeypot logs from 2021 - 2024☆36Sep 30, 2024Updated last year
- ☆33Feb 26, 2022Updated 4 years ago
- ☆48Mar 16, 2026Updated last week
- A public repository of MITRE ATT&ACK TTP mappings by BushidoUK for OSINT reports that lack a section breaking down the TTPs.☆27Mar 20, 2025Updated last year
- Indicators of Normality☆11Jul 22, 2022Updated 3 years ago
- LILO based Pulse Secure appliance disk image decryptor☆13Mar 20, 2024Updated 2 years ago
- Repository of Microsoft Driver Block Lists based off of OS-builds☆43Apr 14, 2024Updated last year