Disregard

Disregard's Stars

• juliocesarfort/public-pentesting-reports

  A list of public penetration test reports published by several consulting firms and academic security groups.

  Language:HTML8.6k499172k

• SigmaHQ/sigma

  Main Sigma Rule Repository

  Language:Python8.5k3446062.2k

• salesforce/ja3

  JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

  Language:Python2.8k9652293

• olafhartong/sysmon-modular

  A repository of sysmon configuration modules

  Language:PowerShell2.7k164100594

• ComodoSecurity/openedr

  Open EDR public repository

  Language:C++2.3k10640453

• sans-blue-team/DeepBlueCLI

  Language:PowerShell2.2k13115355

• Cloud-Architekt/AzureAD-Attack-Defense

  This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

  Language:PowerShell2.2k8014317

• microsoft/Microsoft-365-Defender-Hunting-Queries

  Sample queries for Advanced hunting in Microsoft 365 Defender

  Language:Jupyter Notebook1.9k19736539

• cisagov/ScubaGear

  Automation to assess the state of your M365 tenant against CISA's baselines

  Language:PowerShell1.8k481k233

• yokoffing/NextDNS-Config

  Setup guide for NextDNS, a DoH proxy with advanced capabilities

  1.8k643246

• davehull/Kansa

  A Powershell incident response framework

  Language:PowerShell1.6k142114265

• reprise99/Sentinel-Queries

  Collection of KQL queries

  1.4k8713345

• Bert-JanP/Hunting-Queries-Detection-Rules

  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

  Language:Python1.3k655237

• tom-james-watson/breaktimer-app

  Manage periodic breaks. Avoid eye-strain and RSI.

  Language:TypeScript1.1k1221282

• blackhillsinfosec/EventLogging

  Automation scripts to deploy Windows Event Forwarding, Sysmon, and custom audit policies in an Active Directory environment.

  Language:PowerShell46516968

• rod-trent/SentinelKQL

  Azure Sentinel KQL

  418421108

• chall32/LDWin

  Link Discovery for Windows

  Language:AutoIt411263052

• CyberShadow/dhcptest

  Cross-platform DHCP test client

  Language:D366273657

• rzander/sccmclictr

  Client Center for Configuration Manager

  Language:C#3247118360

• DefensiveOrigins/AtomicPurpleTeam

  Atomic Purple Team Framework and Lifecycle

  28421036

• lithnet/access-manager

  Access Manager provides web-based access to local admin (LAPS) passwords, BitLocker recovery keys, and just-in-time administrative access to Windows computers in a modern, secure, and user-friendly way.

  Language:C#2451618820

• michevnew/PowerShell

  Language:PowerShell2352211132

• activecm/rita

  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

  Language:Go21542223

• microsoft/mdatp-xplat

  Microsoft Defender for macOS/Linux - config samples, auxiliary tools

  Language:Shell2053546195

• tobiasmcvey/kusto-queries

  example queries for learning the kusto language

  917030

• invictus-ir/Blue-team-app-Office-365-and-Azure

  70449

• DukeNuke3D/ntwrk-clean-and-flat

  Free 2D symbols for computer network diagrams based on https://github.com/ecceman/affinity - clean and flat, easily customisable in native Visio stencil format

  62316

• superman-lopez/monitor-timeouts

  Simple bash scrip that uses pings to checks network disconnects

  Language:Shell29415

• jay0lee/oneTwoOne

  Prevent students from logging into other's Chromebook

  Language:JavaScript2011710

• siliconshecky/KQL-Queries

  5100