rafalfitt's Stars
elastic/protections-artifacts
Elastic Security detection content for Endpoint
saturneric/GpgFrontend
A free, open-source, robust yet user-friendly, compact and cross-platform tool for OpenPGP encryption. It stands out as an exceptional GUI frontend for the modern GnuPG (gpg).
Cloud-Architekt/AzurePrivilegedIAM
Docs and samples for privileged identity and access management in Microsoft Azure and Microsoft Entra.
JulianHayward/Azure-MG-Sub-Governance-Reporting
Azure Governance Visualizer aka AzGovViz is a PowerShell script that captures Azure Governance related information such as Azure Policy, RBAC (a lot more) by polling Azure ARM, Storage and Microsoft Graph APIs.
JulianHayward/AzADServicePrincipalInsights
Insights and change tracking on Azure Active Directory Service Principals (Enterprise Applications and Applications)
kgretzky/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
canix1/PIMSCAN
Tool for creating reports on Entra ID Role Assignments
workoho/Entra-Tiering-Security-Model
Implement a powerful Tiering Security Model in Microsoft Entra for your Cloud Administrator identities using Azure Automation.
danielmiessler/fabric
fabric is an open-source framework for augmenting humans using AI. It provides a modular framework for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.
Purp1eW0lf/Blue-Team-Notes
You didn't think I'd go and leave the blue team out, right?
pbatard/rufus
The Reliable USB Formatting Utility
BloodHoundAD/BARK
BloodHound Attack Research Kit
MicrosoftEdge/MSEdge
Microsoft Edge
directorcia/bp
Best Practices
subat0mik/Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
scipag/HardeningKitty
HardeningKitty - Checks and hardens your Windows configuration
LoicVeirman/HardenAD
Hardening Active Directory version 2
Kili69/T1JIT
Tier 1 Just-In-Time
Kili69/Tier0-User-Management
Maintain Tier 0 users. This script take care all Tier 0 users are in the correct OU or in the default user container and add the Kerberos Authentication policy to the user
CompassSecurity/OnPremSecurityBestPractices
mttaggart/wtfbins
WTF are these binaries doing?! A list of benign applications that mimic malicious behavior.
gtworek/VolatileDataCollector
SkipToTheEndpoint/OpenIntuneBaseline
Community-driven baseline to accelerate Intune adoption and learning.
przybylskirobert/ADSecurity
Place where I'm putting all the scripts and config files regarding Active Directory Security.
microsoft/AttackSurfaceAnalyzer
Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.
MariuszFerdyn/AzureSecurityCenterOSRemediations
Harden365/Harden365
Protect your data in minutes !
Azure/Microsoft-Defender-for-Cloud
Welcome to the Microsoft Defender for Cloud community repository
Cloud-Architekt/AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
cisagov/ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines