EML analyzer is an application to analyze the EML file

Pentester's Promiscuous Notebook

Welcome to the Microsoft Defender for Cloud community repository

Download ScriptAnalyzer from PowerShellGallery

Template for a nightly backup of an Azure subscription focussing on Security needs with Sentinel.

KQL Queries. Microsoft Defender, Microsoft Sentinel

Rapidly Search and Hunt through Windows Forensic Artefacts

Microsoft Defender for macOS/Linux - config samples, auxiliary tools

A script that helps you understand why your E-Mail ended up in Spam

Example of using Defender API's and Durable Functions to forward Vulnerability information to Event Hubs

AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE ATT&CK framework. The tool generates tailored incident resp…

Home for my code

Daily feed of bad IPs (with blacklist hit scores)

Unleash the power of the Falcon Platform at the CLI

Incident Response Methodologies 2022

AADInternals PowerShell module for administering Azure AD and Office 365

Script to automate Linux live evidence collection

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.

Digging Deeper....

You didn't think I'd go and leave the blue team out, right?

Advanced Hunting Queries for Microsoft Security Products

Sharing my KQL queries for Azure Sentinel

Collection of KQL queries

KQL queries for Advanced Hunting

A guide to using Azure Data Explorer and KQL for DFIR

Powershell Script to aid Incidence Response and Live Forensics

Digital Forensics Artifact Repository