Thomas Naunheim's repositories
AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
AzurePrivilegedIAM
Docs and samples for privileged identity and access management in Microsoft Azure and Microsoft Entra.
AzureSentinel
Sharing my KQL queries for Azure Sentinel
ADOPipelinesSecInfo
PowerShell module to collect information about service connections and (release) pipelines in Azure DevOps.
arm-templates
Some samples of Azure Resource Manager (ARM) templates
EntraIDAuditLogToMicrosoftGraph
A list of Entra ID (Azure AD) Audit event names and the corresponding Microsoft Graph Request Uri
AzSentinelQueries
Repository with Sentinel Analytics Rules and Hunting Queries
AzADServicePrincipalInsights
Insights and change tracking on Azure Active Directory Service Principals (Enterprise Applications and Applications)