Diddman's Stars
cobbr/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
lazywinadmin/PowerShell
PowerShell functions and scripts (Azure, Active Directory, SCCM, SCSM, Exchange, O365, ...)
dfinke/ImportExcel
PowerShell module to import/export Excel spreadsheets, without Excel
Cloud-Architekt/AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
lefayjey/linWinPwn
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
PSAppDeployToolkit/PSAppDeployToolkit
Project Homepage & Forums
lkarlslund/Adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
MichaelGrafnetter/DSInternals
Directory Services Internals (DSInternals) PowerShell Module and Framework
12Knocksinna/Office365itpros
Office 365 for IT Pros PowerShell examples
scipag/HardeningKitty
HardeningKitty - Checks and hardens your Windows configuration
Gerenios/AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
canix1/ADACLScanner
Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory
openhab/openhab-core
Core framework of openHAB
GhostPack/PSPKIAudit
PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.
BeetleChunks/SpoolSploit
A collection of Windows print spooler exploits containerized with other utilities for practical exploitation.
lithnet/ad-password-protection
Active Directory password filter featuring breached password checking and custom complexity rules
ANSSI-FR/ADTimeline
Timeline of Active Directory changes with replication metadata
LearningKijo/KQL
Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
LearningKijo/SecurityResearcher-Note
Cover various security approaches to attack techniques and also provides new discoveries about security breaches.
skelsec/kerberoast
Kerberoast attack -pure python-
microsoft/MSRC-Microsoft-Security-Updates-API
Repo with getting started projects for the Microsoft Security Updates API (msrc.microsoft.com/update-guide)
ThomasKur/M365Documentation
Automatic Microsoft 365 Documentation to simplify the life of admins and consultants.
aaronparker/icons
Icons for use with applications deployed via Microsoft Intune / MDM / ConfigMgr etc.
mon-csirt/active-directory-security
The "Monash Enterprise Access Model" (MEAM) is a model for tiering Active Directory that builds heavily on the Microsoft Enterprise Access Model.
ryan-jan/MSCatalog
PowerShell module for searching and downloading offline updates from https://www.catalog.update.microsoft.com
p0w3rsh3ll/NetCease
LearningKijo/LearningKijo
Config files for my GitHub profile.
LearningKijo/Defender-APIs
Defender APIs - provide API scenarios to automate incident response actions in Microsoft 365 Defender and Microsoft Defender for Endpoint.
sethvs/sthAdminSDHolder
Module for working with Active Directory groups and users protected by AdminSDHolder container.
aljazperovsek/Microsoft-Home-Lab
Microsoft Home Lab Documentation