xg5-simon / MS-Graph-BlueTeam

Related projects ⓘ

Alternatives and complementary repositories for MS-Graph-BlueTeam

• cyb3rmik3 / Hunting-Lists
  A repository of curated lists with elements such as IoCs to use for threat hunting & detection queries.
  ☆34Updated 4 months ago
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆50Updated last year
• Sam0x90 / CTI
  Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on
  ☆81Updated 6 months ago
• SecurityAura / DE-TH-Aura
  Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…
  ☆39Updated 2 weeks ago
• pr0xylife / Pikabot
  ☆31Updated 7 months ago
• skandler / simulate-akira
  Simulation of Akira Ransomware with Invoke-AtomicTest
  ☆12Updated 4 months ago
• S3N4T0R-0X0 / APT28-Adversary-Simulation
  This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europe
  ☆30Updated 5 months ago
• nyxgeek / track_the_planet
  DEFCON 31 slide deck and video link
  ☆57Updated 4 months ago
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆13Updated last month
• SadProcessor / BloodHoundOperator
  BloodHound PowerShell client
  ☆45Updated last month
• RedTeamOperations / Red-Infra-Craft
  RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…
  ☆91Updated last week
• jstrosch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆49Updated 6 months ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆43Updated last year
• 0xB455 / m365-fatigue
  ☆77Updated 7 months ago
• FuzzySecurity / SANS-HackFest-2023
  ☆47Updated last year
• 0xNslabs / CanaryTokenScanner
  Script designed to identify CanaryTokens within Microsoft Office documents and Acrobat Reader PDF (docx, xlsx, pptx, pdf).
  ☆109Updated 10 months ago
• tsale / EDR-Telemetry-Website
  ☆72Updated this week
• LuemmelSec / PMP-Decrypter
  ☆40Updated last year
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆25Updated last year
• Tanguy-Boisset / bloodhound-automation
  Automatically run and populate a new instance of BH CE
  ☆54Updated last month
• magicsword-io / LOLBASline
  Baseline a Windows System against LOLBAS
  ☆25Updated 6 months ago
• jgasmussen / Linux-Baseline-and-Forensic-Triage-Tool
  Linux Baseline and Forensic Triage Tool - BETA
  ☆50Updated 2 years ago
• infosecn1nja / VeilTransfer
  VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …
  ☆103Updated 2 months ago
• sans-blue-team / DNS-Exfiltrate
  ☆24Updated last year
• Sam0x90 / CB-Threat-Hunting
  CarbonBlack EDR detection rules and response actions
  ☆71Updated 2 months ago
• elementalsouls / DumpLSASS
  ☆34Updated 8 months ago
• 0xAnalyst / Project-Lost
  Living Off Security Tools
  ☆41Updated 3 weeks ago
• OSTEsayed / OSTE-MalStatWare
  MalStatWare automates malware analysis with Python. Extract key details like file size, type, hash, path, and digital signature. It analy…
  ☆29Updated 6 months ago
• MHaggis / ASRGEN
  ASR Configurator, Essentials and Atomic Testing
  ☆36Updated 3 weeks ago
• CTI-Driven / Microsoft-ASR-to-MITRE-ATTACK-Mapping-Project
  This project aims to bridge the gap between Microsoft Attack Surface Reduction (ASR) rules and MITRE ATT&CK by mapping ASR rules to their…
  ☆23Updated this week