apexxor's Stars
ChrisTitusTech/winutil
Chris Titus Tech's Windows Utility - Install Programs, Tweaks, Fixes, and Updates
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Raphire/Win11Debloat
A simple, easy to use PowerShell script to remove pre-installed apps from Windows, disable telemetry, remove Bing from Windows search as well as perform various other changes to declutter and improve your Windows experience. This script works for both Windows 10 and Windows 11.
Sophia-Community/SophiApp
:zap: The most powerful open source tweaker on GitHub for fine-tuning Windows 10 & Windows 11
TracecatHQ/tracecat
The open source Tines / Splunk SOAR alternative.
api0cradle/UltimateAppLockerByPassList
The goal of this repository is to document the most common techniques to bypass AppLocker.
PSAppDeployToolkit/PSAppDeployToolkit
Project Homepage & Forums
tsale/EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
pentestmonkey/windows-privesc-check
Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems
ohmybahgosh/RockYou2021.txt
RockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!
SwiftOnSecurity/OrgKit
Provision a brand-new company with proper defaults in Windows, Offic365, and Azure
lithnet/ad-password-protection
Active Directory password filter featuring breached password checking and custom complexity rules
mvelazc0/BadZure
BadZure orchestrates the setup of Azure AD tenants, populating them with diverse entities while also introducing common security misconfigurations to create vulnerable tenants with multiple attack paths.
vanvfields/Microsoft-365
Scripts to help configure Microsoft 365
jsecurity101/MSRPC-to-ATTACK
A repository that maps commonly used attacks using MSRPC protocols to ATT&CK
mtniehaus/AutopilotBranding
Psmths/windows-forensic-artifacts
Handbook of windows forensic artifacts across multiple Windows version with interpretation tips and some examples. Work in progress!
Azure/securedworkstation
Intune managed Secured workstation
AzureAD/MSIdentityTools
Repository for the Microsoft Identity Tools PowerShell module which provides various tools for performing enhanced Identity administration activities.
KQLMSPress/definitive-guide-kql
Sample queries and data as part of the Microsoft Press book, The Definitive Guide to KQL
SpecterOps/TierZeroTable
Table of AD and Azure assets and whether they belong to Tier Zero
pdqcom/PowerShell-Scanners
A community repository of PowerShell Scanners for PDQ Inventory.
lawndoc/Respotter
Respotter is a Responder honeypot! Catch attackers as soon as they spin up Responder in your environment.
0xAnalyst/CB-Threat-Hunting
LuccaSA/PingCastle-Notify
Monitor your PingCastle scans to highlight the rule diff between two scans
alexverboon/Hunting-Queries-Detection-Rules
KQL Queries. Microsoft Defender, Microsoft Sentinel
mon-csirt/active-directory-security
The "Monash Enterprise Access Model" (MEAM) is a model for tiering Active Directory that builds heavily on the Microsoft Enterprise Access Model.
workoho/Entra-Tiering-Security-Model
Implement a powerful Tiering Security Model in Microsoft Entra for your Cloud Administrator identities using Azure Automation.
jsecurity101/MSFT_DriverBlockList
Repository of Microsoft Driver Block Lists based off of OS-builds
Trimarc/Find-and-Fix
Small scripts and targeted tools created by Trimarc staff to help solve common issues in Identity Security.