mateuszziebura

mateuszziebura's Stars

• improsec/ImproHound

  Identify the attack paths in BloodHound breaking your AD tiering

  Language:C#30534

• AtentumZero/Azure-BlueTeam-Toolkit

  A collection of KQL queries for running security monitoring in Microsoft Azure using Azure Sentinel and 365 Defender Advanced Hunting.

  2

• eshlomo1/Microsoft-Sentinel-SecOps

  Microsoft Sentinel SOC Operations

  Language:PowerShell23962

• Cloud-Architekt/AzureSentinel

  Sharing my KQL queries for Azure Sentinel

  Language:PowerShell13730

• alexverboon/Hunting-Queries-Detection-Rules

  KQL Queries. Microsoft Defender, Microsoft Sentinel

  10211

• 0xAnalyst/DefenderATPQueries

  Hunting Queries for Defender ATP

  715

• Bert-JanP/Incident-Response-Powershell

  PowerShell Digital Forensics & Incident Response Scripts.

  Language:PowerShell46063

• turbot/steampipe

  Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

  Language:Go6.9k267

• BishopFox/cloudfox

  Automating situational awareness for cloud penetration tests.

  Language:Go1.9k183

• dirkjanm/ROADtools

  A collection of Azure AD/Entra tools for offensive and defensive security purposes

  Language:Python1.8k262

• alaanasser00/entraid-bench

  Microsoft Entra ID Security Assessment Tool

  Language:PowerShell314

• aquasecurity/cloudsploit

  Cloud Security Posture Management (CSPM)

  Language:JavaScript3.3k668

• prowler-cloud/prowler

  Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

  Language:Python10.7k1.5k

• Azure/template-analyzer

  Template scanner for security misconfiguration and best practices

  Language:C#12739

• NotSoSecure/cloud-service-enum

  Language:Python22360

• nccgroup/ScoutSuite

  Multi-Cloud Security Auditing Tool

  Language:Python6.6k1.1k

• mayooear/gpt4-pdf-chatbot-langchain

  GPT4 & LangChain Chatbot for large PDF docs

  Language:TypeScript14.9k3k

• junruxiong/IncarnaMind

  Connect and chat with your multiple documents (pdf and txt) through GPT 3.5, GPT-4 Turbo, Claude and Local Open-Source LLMs

  Language:Python77449

• esidate/pentesting-active-directory

  Active Directory pentesting mind map

  29443

• LearningKijo/KQL

  Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.

  43374

• splunk/security_content

  Splunk Security Content

  Language:Python1.3k354

• guardsight/gsvsoc_cirt-playbook-battle-cards

  Cyber Incident Response Team Playbook Battle Cards

  35963

• cyb3rmik3/KQL-threat-hunting-queries

  A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

  55060

• m4nbat/KustQueryLanguage_kql

  Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting

  Language:Batchfile541

• Cloud-Architekt/AzureAD-Attack-Defense

  This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

  Language:PowerShell2.1k302

• blackhatethicalhacking/shodan_quick_recon

  A Python Tool that uses Shodan API's to perform quick recon for vulnerabilities

  Language:Python81

• heywoodlh/urlscan-py

  Python wrapper for urlscan.io's API

  Language:Python10336

• laramies/theHarvester

  E-mails, subdomains and names Harvester - OSINT

  Language:Python11.2k2k

• abdulkadir-gungor/Shodan_Search

  Based on the Shodan API, it displays the open ports and security vulnerabilities of the server related to the entered ip or hostname.

  Language:Python154

• Xen0ph0n/VirusTotal_API_Tool

  A Tool To Leverage Virus Total's Private API Key

  Language:Python233115