Pinned Repositories
-Data-Stream-Development-with-Apache-Spark-Kafka-and-Spring-Boot
Data Stream Development with Apache Spark, Kafka and Spring Boot by Packt Publishing
100DaysOfIaC
100 Days of IaC in Azure
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
AD-Attack-Defense
Active Directory Security For Red & Blue Team
ATTACKdatamap
A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
Awesome-Advanced-Windows-Exploitation-References
List of Awesome Advanced Windows Exploitation References
azure-blob-storage-malware-scan
Sample code which allows scanning azure blobs for Malware
Azure-MG-Sub-Governance-Reporting
AzGovViz (Azure Governance Visualizer) is a PowerShell script that captures Azure Governance related information such as Azure Policy, RBAC (a lot more) by polling Azure ARM and Microsoft Graph APIs. From the collected data AzGovViz provides visibility on your HierarchyMap, creates a TenantSummary, creates DefinitionInsights and builds granular ScopeInsights on Management Groups and Subscriptions.
Azure-Sentinel-Notebooks
Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.
azuread
k3aczyk's Repositories
k3aczyk/100DaysOfIaC
100 Days of IaC in Azure
k3aczyk/AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
k3aczyk/ATTACKdatamap
A datasource assessment on an event level to show potential coverage or the MITRE ATT&CK framework
k3aczyk/azure-blob-storage-malware-scan
Sample code which allows scanning azure blobs for Malware
k3aczyk/Azure-MG-Sub-Governance-Reporting
AzGovViz (Azure Governance Visualizer) is a PowerShell script that captures Azure Governance related information such as Azure Policy, RBAC (a lot more) by polling Azure ARM and Microsoft Graph APIs. From the collected data AzGovViz provides visibility on your HierarchyMap, creates a TenantSummary, creates DefinitionInsights and builds granular ScopeInsights on Management Groups and Subscriptions.
k3aczyk/Azure-Sentinel-Notebooks
Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.
k3aczyk/azuread
k3aczyk/AzureRBAC
Docs and samples about privileged identity and access management in Azure
k3aczyk/BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
k3aczyk/CloudAdoptionFramework
Code samples and extended documentation to support the guidance provided in the Microsoft Cloud Adoption Framework
k3aczyk/CloudScraper
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
k3aczyk/cloudsploit
Cloud Security Posture Management (CSPM)
k3aczyk/ConditionalAccess
k3aczyk/DockerSecurityPlayground
A Microservices-based framework for the study of Network Security and Penetration Test techniques
k3aczyk/Exe-Spy
ExeSpy is a cross-platform PE viewer for EXE and DLL files
k3aczyk/live-ephemeral
k3aczyk/MDATP
Microsoft Defender Advanced Threat Protection - Resource Hub
k3aczyk/microservices-demo
Deployment scripts & config for Sock Shop
k3aczyk/msportals.io
Microsoft Administrator Sites
k3aczyk/OSSEM
Open Source Security Events Metadata (OSSEM)
k3aczyk/powerapps-tools
Unsupported PowerApps Tools & Apps
k3aczyk/red_team_attack_lab
Red Team Attack Lab for TTP testing & research
k3aczyk/ROADtools
The Azure AD exploration framework.
k3aczyk/SecurityBenchmarks
Supplemental information and resources for the Security Benchmark documentation available at https://docs.microsoft.com/azure/security/benchmarks/.
k3aczyk/sentinelascode
Enable the automatic deployment of Azure Sentinel using code
k3aczyk/SentinelWorkbooks
Workbooks for Azure Sentinel
k3aczyk/sigma
Generic Signature Format for SIEM Systems
k3aczyk/spl-to-kql
The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects requiring both technologies (Splunk and Azure/Sentinel) or any other hybrid environments. Feel free to add/suggest entries.
k3aczyk/Stormspotter
Azure Red Team tool for graphing Azure and Azure Active Directory objects
k3aczyk/WinDbgCheatSheet