Stars
Examples of various Entra ID scenarios in Terraform
All the deals for InfoSec related software/tools this Black Friday
M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response capabilities.
A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID
Generate test data that is not only realistic but also contextually meaningful
Halberd : Multi-Cloud Attack Platform
Simulate DragonForce Ransomware with AtomicRedTeam
Docker container for running CobaltStrike 4.10
LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. This project gathers procedural examples from public reports …
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
Building environments to replicate small networks and deploy applications
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
Scripts to interact with Microsoft Graph APIs
This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.
Remove all resources from an Azure Tenant and it's Subscriptions.
C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
Automated .NET AppDomain hijack payload generation
REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.