Christian Frohn's starred repositories
Copilot-For-Security
Microsoft Copilot for Security is a generative AI-powered security solution that helps increase the efficiency and capabilities of defenders to improve security outcomes at machine speed and scale, while remaining compliant to responsible AI principles
awesome-entra
😎 Awesome list of all things related to Microsoft Entra
EntraExporter
PowerShell module to export a local copy of an Entra (Azure AD) tenant configuration.
logicappdocs
Generate technical Markdown documentation for your Azure Logic App and Power Automate Flows
microsoft-info
Repository hosting a static list of Microsoft First party apps and Graph permissions that's updated daily
Hunting-Queries-Detection-Rules
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.
entra-id-inbound-provisioning
Samples, scripts and resources to help you get started with Microsoft Entra API-driven inbound provisioning
azure-orphan-resources
Centralize orphan resources in Azure environments
all-the-exams
A list of all Microsoft exams, including recent and upcoming changes - updated weekly.
awesome-azure-policy
A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon
AADConnectConfigDocumenter
AAD Connect configuration documenter is a tool to generate documentation of an AAD Connect installation.
CertificationMaterials
A collection of materials related to my certification videos
awesome-kql-sentinel
A curated list of blogs, videos, tutorials, queries and anything else valuable to help you learn and master KQL and Microsoft Sentinel
AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
winget-cli
WinGet is the Windows Package Manager. This project includes a CLI (Command Line Interface), PowerShell modules, and a COM (Component Object Model) API (Application Programming Interface).
azure-content
Repository containing the Articles on azure.microsoft.com Documentation Center
AutomationOrchestrator
Automation Orchestrator application to orchestrate and manage digital process automation (RPA)
Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
access-reviews-samples
This repo contains sample code that demonstrates programmatic access to Azure AD Access Reviews. Sample code includes reading and managing Access Reviews, as well as working on decisions and results of Access Reviews.
BloodHound
Six Degrees of Domain Admin
Intune-Network-Drive-Mapping-Tool
Map on-premises network shares with Intune and the Microsoft Store for Business
Sentinel-Queries
Collection of KQL queries
Community-Policy
This repo is for Microsoft Azure customers and Microsoft teams to collaborate in making custom policies.