Automate the creation of a lab environment complete with security tooling and logging best practices

game of active directory

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

An Ansible collection that installs an SCCM deployment with optional configurations.

A powershell script to obtain a SPNEGO token. This can be used with Entra Seamless SSO.

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

Tool for Active Directory Certificate Services enumeration and abuse

Trying to tame the three-headed dog.

proxychains - a tool that forces any TCP connection made by any given application to follow through proxy like TOR or any other SOCKS4, SOCKS5 or HTTP(S) proxy. Supported auth-types: "user/pass" fo…

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

A collaborative, multi-platform, red teaming framework

Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.

Sample queries for Advanced hunting in Microsoft 365 Defender

A curated list for Awesome Kubernetes Security resources