Alternatives and similar repositories for osprey

Users that are interested in osprey are comparing it to the libraries listed below

• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆75Updated 2 months ago
• invictus-ir / Invictus-training
  Repository with supporting materials for Invictus Academy/Training
  ☆43Updated 5 months ago
• Bert-JanP / SecScripts
  Security Scripts and Sources for daily usage.
  ☆60Updated 3 weeks ago
• securesloth / noCAP
  Lightweight security tool for auditing your organization's Conditional Access Policies (CAPs) in Microsoft Entra ID for potential misconf…
  ☆72Updated 3 months ago
• msdirtbag / ADXFlowmaster
  ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.
  ☆37Updated 7 months ago
• mr-r3b00t / KQL
  This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet
  ☆12Updated 3 months ago
• msdirtbag / MicrosoftPurpleTeamToolkit
  ☆44Updated last year
• Permiso-io-tools / azure-activity-log-axe
  Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…
  ☆27Updated 9 months ago
• tsale / EDR-Telemetry-Website
  ☆74Updated 2 months ago
• oloruntolaallbert / MS-Attack-Range
  An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…
  ☆47Updated this week
• securityjoes / Crowdstrike-Deploy
  The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.
  ☆24Updated last week
• invictus-ir / Blue-team-app-Office-365-and-Azure
  ☆72Updated 7 months ago
• rootsecdev / Presentations
  Presentations from Conferences
  ☆29Updated 8 months ago
• msdirtbag / azurevelo
  Velociraptor Server hosted in Azure App Service
  ☆54Updated this week
• alexverboon / DefenderResourceHub
  Defender Resource Hub
  ☆25Updated 2 weeks ago
• 0xAnalyst / DefenderATPQueries
  Hunting Queries for Defender ATP
  ☆82Updated last month
• corelight / Elasticsearch_rules
  Elastic version of SOC prime watcher rules
  ☆29Updated 7 months ago
• nicolonsky / ITDR
  Collection of Microsoft Identity Threat Detection and Response resources.
  ☆44Updated this week
• Bert-JanP / Sentinel-Automation
  Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.
  ☆94Updated last month
• Digital-Defense-Institute / triage.zip
  A preconfigured Velociraptor triage collector
  ☆52Updated last week
• DefensiveOrigins / DO-LAB
  ☆47Updated last month
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆54Updated last year
• dandye / adk_runbooks
  ☆27Updated this week
• reversinglabs / reversinglabs-siem-rules
  A collection of various SIEM rules relating to malware family groups.
  ☆66Updated 11 months ago
• olafhartong / DefenderHarvester
  Expose a lot of MDE telemetry that is not easily accessible in any searchable form
  ☆106Updated 5 months ago
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆91Updated last year
• CTI-Driven / Microsoft-ASR-to-MITRE-ATTACK-Mapping-Project
  This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…
  ☆26Updated 6 months ago
• AttacktheSOC / Azure-SecOps
  Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)
  ☆68Updated last month
• ml58158 / Demystifying-KQL
  Content Repo for Demystifying KQL Tutorial Series
  ☆70Updated 9 months ago
• azurekid / blackcat
  BlackCat is a PowerShell module designed to validate the security of Microsoft Azure. It provides a set of functions to identify potentia…
  ☆132Updated last week