trevorbryant / usgov-controls

Related projects ⓘ

Alternatives and complementary repositories for usgov-controls

• DefensiveOrigins / DO-LAB
  ☆43Updated last month
• chihebchebbi / Sentinel2Attack
  ☆14Updated 3 years ago
• olafhartong / WDACme
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆27Updated last year
• secgroundzero / KQL_Reference_Manual
  ☆40Updated 3 years ago
• lkarlslund / adalanche-sampledata
  Explore the GOAD Active Directory lab in 5 minutes with Adalanche
  ☆35Updated 10 months ago
• NetSPI / PowerHunt
  PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
  ☆60Updated 7 months ago
• humio / security_monitoring
  ☆40Updated last year
• cudeso / CSIRT-Jump-Bag
  CSIRT Jump Bag
  ☆27Updated 6 months ago
• freeload101 / Bloodhound-Portable
  Bloodhound Portable for Windows
  ☆51Updated last year
• eshlomo1 / Azure-AD-Incident-Response
  Azure AD Incident Response
  ☆24Updated 3 years ago
• jangeisbauer / gundog
  gundog - guided hunting in Microsoft Defender
  ☆52Updated 3 years ago
• Bert-JanP / Domain-Response
  Domain Response is a tool that is designed to help you automate the investigation for a domain. This tool is specificly designed to autom…
  ☆44Updated 7 months ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆40Updated last year
• PwnDefend / AzureAuditPrep
  ☆13Updated 3 years ago
• Permiso-io-tools / azure-activity-log-axe
  Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…
  ☆22Updated 2 months ago
• Acheron-VAF / Acheron
  Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.
  ☆31Updated last year
• FalconForceTeam / KQLAnalyzer
  REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
  ☆31Updated 6 months ago
• jsa2 / aadcookiespoof
  Azure AD Identity Protection Cookie Spoofing
  ☆31Updated last year
• GossiTheDog / nmap-scripts
  repository containing some nmap scripts
  ☆11Updated 3 years ago
• dwmetz / QuickPcap
  A quick and easy PowerShell script to collect a packet trace with option to convert .etl to .pcap.
  ☆40Updated 2 years ago
• sdcampbell / Nessusploitable
  Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv
  ☆38Updated last year
• petebryan / blue_team_con
  ☆17Updated 2 years ago
• Securityinbits / cheatsheet
  These are some of the commands which I use frequently during Malware Analysis and DFIR.
  ☆25Updated 10 months ago
• Starke427 / Windows-Security-Policy
  Specific guidance and configuration scripts based on Microsoft-recommended security configuration baselines for Windows.
  ☆11Updated 4 years ago
• rootsecdev / Presentations
  Presentations from Conferences
  ☆26Updated 2 months ago
• jsa2 / CloudShellAadApps
  ☆26Updated last year
• olafhartong / Sentinel-template-parser
  Azure Sentinel Template parser
  ☆15Updated 4 years ago
• j91321 / ansible-role-sysmon
  Ansible role for installing Sysmon with popular config files included.
  ☆24Updated last year
• Kaidja / EntraID
  Automation around Entra ID
  ☆34Updated 4 months ago
• threat-hunting / awesome-threat-detection
  A curated list of awesome threat detection and hunting resources
  ☆16Updated 6 years ago