Alternatives and similar repositories for OneDrive

Users that are interested in OneDrive are comparing it to the libraries listed below

• microsoft / EventLogExpert
  ☆217Updated 4 months ago
• JeffMichelmore / MDEKit
  ☆41Updated 2 years ago
• mandiant / citrix-ioc-scanner-cve-2023-3519
  ☆67Updated 2 years ago
• Harvester57 / Security-ADMX
  Custom ADMX template focused on hardening Windows 10 & Windows 11 systems
  ☆89Updated last week
• randomaccess3 / detections
  ☆42Updated 2 weeks ago
• reprise99 / 4688-sysmon
  ☆61Updated 2 years ago
• davidhowell-tx / PS-SentinelOne
  PowerShell module for SentinelOne API
  ☆69Updated 2 years ago
• kacos2000 / WinEDB
  Windows.EDB Browser
  ☆59Updated 2 years ago
• cyberphor / Soap
  A PowerShell module for incident response and threat hunting.
  ☆35Updated last year
• EvotecIT / PowerShellManager
  Little PowerShell module to extract PowerShell scripts that no longer exists on disk but were run and are still in Event Logs.
  ☆40Updated 4 years ago
• alexverboon / DefenderResourceHub
  Defender Resource Hub
  ☆29Updated 2 weeks ago
• THEVER1TAS / sysmon-config
  Sysmon configuration file templates with advanced event tracing and blocking
  ☆40Updated 2 months ago
• anthonws / MDATP_PoSh_Scripts
  ☆50Updated last year
• HybridBrothers / Hunting-Queries-Detection-Rules
  The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…
  ☆59Updated this week
• olafhartong / WDACme
  A WDAC configuration repository with the sole intention of enriching MDE
  ☆29Updated 4 months ago
• scriptjunkie / fwallower
  Analyze Windows Firewall outbound blocks and selectively allow traffic
  ☆69Updated 2 years ago
• Kaidja / Defender-for-Endpoint
  Defender for Endpoint
  ☆27Updated last year
• MotiBa / AppLocker
  AppLocker hardening policies
  ☆26Updated 7 years ago
• v3rtho / MDE-troubleshooter
  This tool is designed to assist you in analyzing issues related to Defender for Endpoint on your local endpoint. It offers a centralized …
  ☆71Updated 4 months ago
• Sergio-Albea-Git / Threat-Hunting-KQL-Queries
  ☆32Updated last week
• AndrewRathbun / DFIRPowerShellScripts
  Various PowerShells scripts I've made (or others have made) to automate some of the boring stuff in my everyday DFIR journey!
  ☆49Updated last year
• EricZimmerman / KapeDocs
  Documentation repository
  ☆45Updated last year
• kacos2000 / WindowsTimeline
  Windows 10 (v1803+) ActivitiesCache.db parsers (SQLite, PowerShell, .EXE)
  ☆197Updated 2 years ago
• EricZimmerman / Srum
  ☆50Updated 9 months ago
• YongRhee-MDE / LiveResponse
  M365 MDATP Live Response sample scripts
  ☆79Updated last year
• Beercow / OneDriveExplorer
  OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…
  ☆218Updated last month
• jkerai1 / SoftwareCertificates
  Repository for Software Certs for easy software blocking across corp environments, for example, using MDE IOC
  ☆50Updated this week
• jischell-msft / RemoteManagementMonitoringTools
  Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
  ☆98Updated 2 months ago
• moaistory / WinSearchDBAnalyzer
  http://moaistory.blogspot.com/2018/10/winsearchdbanalyzer.html
  ☆124Updated last year
• AndrewRathbun / KAPE-EZToolsAncillaryUpdater
  A script that updates KAPE (using Get-KAPEUpdate.ps1) as well as EZ Tools (within .\KAPE\Modules\bin) and the ancillary files that enhanc…
  ☆58Updated 4 months ago