syne0 / ospreyLinks
Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
☆16Updated 9 months ago
Alternatives and similar repositories for osprey
Users that are interested in osprey are comparing it to the libraries listed below
Sorting:
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆79Updated last month
- Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…☆31Updated last year
- Repository with supporting materials for Invictus Academy/Training☆43Updated 9 months ago
- An index of publicly available and open-source threat detection rulesets.☆125Updated 5 months ago
- Security Scripts and Sources for daily usage.☆65Updated last week
- Mapping of open-source detection rules and atomic tests.☆177Updated 8 months ago
- ☆74Updated last week
- KQL queries for Incident Response☆12Updated last year
- BlackCat is a PowerShell module designed to validate the security of Microsoft Azure. It provides a set of functions to identify potentia…☆148Updated 2 weeks ago
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆40Updated 11 months ago
- Azure AppHunter is an open-source tool created for security researchers, red teamers and defenders to help them identify excessive privil…☆92Updated last month
- DeRF (Detection Replay Framework) is an "Attacks As A Service" framework, allowing the emulation of offensive techniques and generation o…☆102Updated last year
- VirtualGHOST Detection Tool☆92Updated last year
- Lightweight security tool for auditing your organization's Conditional Access Policies (CAPs) in Microsoft Entra ID for potential misconf…☆75Updated 7 months ago
- A collection of various SIEM rules relating to malware family groups.☆70Updated last year
- A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.☆81Updated last year
- The Eventlog Compendium is the go-to resource for understanding Windows Event Logs.☆49Updated 5 months ago
- A starter pack of resources to help you get started in Detection Engineering.☆172Updated last month
- The ultimate repository for remotely deploying Crowdstrike sensors quickly and discreetly on any other EDR platform.☆24Updated last month
- ☆44Updated last year
- Generate a matrix based on an inventory of InfoSec tools☆23Updated last year
- Online resources related to Detection Engineering. Detection rules, detection logic, attack samples, detection tests and emulation tools…☆118Updated last month
- Elastic version of SOC prime watcher rules☆30Updated 11 months ago
- This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…☆27Updated 10 months ago
- M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…☆311Updated 2 months ago
- Anvilogic Forge☆108Updated 3 weeks ago
- Velociraptor Server hosted in Azure App Service☆58Updated 4 months ago
- ☆102Updated 3 months ago
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆151Updated last week
- AI-powered cybersecurity attack flow visualization tool using MITRE ATT&CK☆72Updated 3 weeks ago