Azure Landing Zones documentation

Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.

This repository contains the Azure Landing Zones (ALZ) Bicep modules that help deliver and deploy the Azure Landing Zone conceptual architecture in a modular approach. https://aka.ms/alz/docs

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

Automation to assess the state of your M365 tenant against CISA's baselines

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

Nuclei Templates Collection

AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,

GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

A wrapper around grep, to help you grep for things

Azure Data Exporter for BloodHound

Six Degrees of Domain Admin

A library for graph deep learning research

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

A curated list of awesome Microsoft Azure Security tools, guides, blogs, and other resources.

A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.

Fast subdomains enumeration tool for penetration testers

A next-generation crawling and spidering framework.

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

A curated list of various bug bounty tools

A tool for adding new lines to files, skipping duplicates

Impacket is a collection of Python classes for working with network protocols.

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Enumerate Typo3 version and extensions

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More

Subdomain takeover vulnerability checker

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.