A set of Python scripts for finding threats in Office365
☆49Mar 27, 2023Updated 3 years ago
Alternatives and similar repositories for py365
Users that are interested in py365 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The method and files used to generate Sysmon event logs, push them to a remote Splunk, and ingest/normalize the data for analysis.☆10Sep 28, 2020Updated 5 years ago
- A packer project to generate Windows EVAL images to use it on test / dev / hack / IR labs☆23Jan 3, 2021Updated 5 years ago
- The Office 365 Extractor is a tool that allows for complete and reliable extraction of the Unified Audit Log (UAL)☆161Mar 27, 2023Updated 3 years ago
- ☆10Dec 24, 2022Updated 3 years ago
- ☆24Jul 7, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆24Aug 27, 2021Updated 4 years ago
- urlscan.io API wrapper for Ruby☆13Oct 16, 2023Updated 2 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆14Jan 23, 2024Updated 2 years ago
- An introduction to detection engineering☆14Jan 3, 2025Updated last year
- SDS011 pollution sensor + Wemos D1 mini pro + Micropython☆13Jul 11, 2017Updated 8 years ago
- Library of python scripts to apply Data Science in several forensics artifacts☆31Jul 16, 2020Updated 5 years ago
- When CactusTorch meets WebDavDelivery and obfuscation☆63Sep 19, 2017Updated 8 years ago
- ATTPwn☆219Mar 9, 2024Updated 2 years ago
- SSL certificate authority script package for creating and signing your own SSL/TLS certificates☆11Nov 28, 2025Updated 5 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A set of tools for managing and diagnosing Intune on Windows endpoints☆52Feb 25, 2025Updated last year
- All-in-one bundle of MISP, TheHive and Cortex☆168Sep 27, 2022Updated 3 years ago
- Bash Enumeration Script☆18Oct 18, 2019Updated 6 years ago
- ☆12Apr 14, 2021Updated 5 years ago
- A modular OSINT honeypot for blue teamers☆347May 2, 2023Updated 3 years ago
- Resources for SANS CTI Summit 2021 presentation☆104Nov 8, 2023Updated 2 years ago
- urlyzer is a URL parsing analysis tool.☆24Jul 27, 2024Updated last year
- This script validates the most common Conditional Access policies in Microsoft 365.☆10May 27, 2024Updated last year
- ☆14Aug 24, 2019Updated 6 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- BinjaryNinja plugin for a ShellStorm like assembly/disassembly experience☆17Nov 28, 2024Updated last year
- Security Operations Center Multiple Purpose Tool, takes IP address input, conducts OSINT, conducts splunk, bro, fireeye, imperva, and fir…☆23Jun 6, 2017Updated 8 years ago
- ☆80Apr 18, 2023Updated 3 years ago
- ☆98Oct 7, 2020Updated 5 years ago
- An extendable tool to extract and aggregate IoCs from threat feeds☆33Feb 6, 2024Updated 2 years ago
- A toolkit to attack Office365☆16Aug 1, 2019Updated 6 years ago
- ☆12Sep 4, 2013Updated 12 years ago
- Cheat sheets for threat hunting, detection and other stuff.☆34Oct 7, 2022Updated 3 years ago
- A simple fuzzy matching set for python strings☆10Nov 25, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆18Jun 8, 2018Updated 7 years ago
- Your Browser-based EVTX Companion☆119Mar 2, 2026Updated 2 months ago
- Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 en…☆1,429Dec 27, 2022Updated 3 years ago
- Unpacking and decryption tools for the Emotet malware☆44Dec 5, 2021Updated 4 years ago
- Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-ac…☆107Jun 27, 2024Updated last year
- Gathers a defined subset of various logs and highlights important lines.☆19Sep 10, 2021Updated 4 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆103Mar 21, 2026Updated last month