andsif's Stars
iknowjason/PurpleCloud
A little tool to play with Azure Identity - Azure and Entra ID lab creation tool. Blog: https://medium.com/@iknowjason/sentinel-for-purple-teaming-183b7df7a2f4
mitre-attack/car
Cyber Analytics Repository
palantir/alerting-detection-strategy-framework
A framework for developing alerting and detection strategies for incident response.
sbilly/awesome-security
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
shuaibiyy/awesome-tf
Curated list of resources on HashiCorp's Terraform and OpenTofu
Correia-jpv/fucking-awesome-incident-response
A curated list of tools for incident response. With repository stars⭐ and forks🍴
cyb3rxp/awesome-soc
A collection of sources of documentation, as well as field best practices, to build/run a SOC
hslatman/awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
tylerha97/awesome-reversing
A curated list of awesome reversing resources
cugu/awesome-forensics
⭐️ A curated list of awesome forensic analysis tools and resources
jakejarvis/awesome-shodan-queries
🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩💻
enaqx/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
jivoi/awesome-osint
:scream: A curated list of amazingly awesome OSINT
fabacab/awesome-cybersecurity-blueteam
:computer:🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
CyberSecurityUP/Awesome-Red-Team-Operations
SigmaHQ/sigma
Main Sigma Rule Repository
swisskyrepo/InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
dafthack/MSOLSpray
A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
cyb3rmik3/KQL-threat-hunting-queries
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
Cyb3r-Monk/Threat-Hunting-and-Detection
Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
FuzzySecurity/PowerShell-Suite
My musings with PowerShell
KQLMSPress/definitive-guide-kql
Sample queries and data as part of the Microsoft Press book, The Definitive Guide to KQL
scipag/HardeningKitty
HardeningKitty - Checks and hardens your Windows configuration
rod-trent/MustLearnKQL
Code included as part of the MustLearnKQL blog series
CIRCL/AIL-framework
AIL framework - Analysis Information Leak framework. Project moved to https://github.com/ail-project
0xMrNiko/Awesome-Red-Teaming
List of Awesome Red Team / Red Teaming Resources This list is for anyone wishing to learn about Red Teaming but do not have a starting point.
redcanaryco/invoke-atomicredteam
Invoke-AtomicRedTeam is a PowerShell module to execute tests as defined in the [atomics folder](https://github.com/redcanaryco/atomic-red-team/tree/master/atomics) of Red Canary's Atomic Red Team project.
BinaryDefense/artillery
The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.
AlessandroZ/LaZagne
Credentials recovery project
ly4k/Certipy
Tool for Active Directory Certificate Services enumeration and abuse