CimSweep is a suite of CIM/WMI-based tools that enable the ability to perform incident response and hunting operations remotely across all versions of Windows.

GaryTown Scripts, Downloads, Etc

Vocabulary for Event Recording and Incident Sharing (VERIS)

Windows Events Attack Samples

Sigma open source rules in LimaCharlie format.

The official Python 3 client library for VirusTotal

From Doodle to Code: Understand the concepts of Generative AI principles through doodles and apply the knowledge by coding!

Monkey365 provides a tool for security consultants to easily conduct not only Microsoft 365, but also Azure subscriptions and Microsoft Entra ID security configuration reviews.

TerminalTextEffects (TTE) is a terminal visual effects engine, application, and Python library.

A script to help stay in control of guest access in Entra ID

This repository of PowerShell sample scripts show how to access Intune service resources. They demonstrate this by making HTTPS RESTful API requests to the Microsoft Graph API from PowerShell.

Provides a set of functions to manage all aspects of Win32 apps in Microsoft Intune.

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

A slightly more fun way to disable windows defender + firewall. (through the WSC api)

Collaborative forensic timeline analysis

Pipeline to process LimaCharlie Velociraptor Triages in Timesketch

Powershell Based tool for gathering information related to O365 intrusions and potential Breaches

Documentation and scripts to properly enable Windows event logs.

Source code syntax highlighting for OneNote 2016 and OneNote for O365 . NoteHighlight 2013 port for OneNote 2016 (32-bit and 64-bit)

An open repo for Azure Monitor queries, workbooks, alerts and more

The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Product Group in conjunction with the Microsoft Detection and Resp…

The CrossPlatform (Linux, Windows, MAC-OS) FeedbackProvider, for better inplementing CrossPlatform Scripts

A tool to wrap Win32 App and then it can be uploaded to Intune

Install and Run Python Applications in Isolated Environments

A fast pure-Python search engine

UniGetUI: The Graphical Interface for your package managers. Could be terribly described as a package manager manager to manage your package managers

💾 Get moving with Super Grate; a free & open source Windows Profile Migration & Backup Utility. Super Grate is a GUI (Graphical User Interface) that assists Microsoft's USMT (User State Migration U…

Supplementary material for my book, Probably Overthinking It.

Inspect and refine PATH environment variable on Windows, Linux and MacOS.

Make awesome display tables using Python.