Mehmet E.'s repositories
Threat-Hunting-and-Detection
Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
Cheat-Sheets
Cheat sheets for threat hunting, detection and other stuff.
malware_training_vol1
Materials for Windows Malware Analysis training (volume 1)
Microsoft-M365D-Hunting-Queries
Sample queries for Advanced hunting in Microsoft Threat Protection
SharpTokenFinder
C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
TokenFinder
Tool to extract powerful tokens from Office desktop apps memory
Alcatraz
x64 binary obfuscator
azure-docs
Open source documentation of Microsoft Azure
DataAnalysisWithPythonAndPySpark
Code repository for the "PySpark in Action" book
DataAnalysisWithPythonAndPySpark-Data
Data for the `Data Analysis with Python and PySpark` book
dataexplorer-docs
Azure Data Explorer
forensic_as_code
peregrinations at the frontier of forensic and data science
GOAD
game of active directory
GraphPreConsentExplorer
A comprehensive list of usable Entra ID first-party clients with pre-consented Microsoft Graph scopes, in a simple YAML-file explorable with a simple HTML GUI.
huntlib
A Python library to help with some common threat hunting data analysis operations
InfoSec-Black-Friday
All the deals for InfoSec related software/tools this Black Friday
ipython-magics
SecureWorks' Infosec Jupyterthon IPython Magics talk
OffensiveAutoIt
Offensive tooling notes and experiments in AutoIt v3 (https://www.autoitscript.com/site/autoit/)
PowerShell-Windows-Eventlog-Analysis
Scripts and tools for use with Microsoft products/technologies
taegis-threat-hunting-tutorials
Threat Hunting with Jupyter Notebooks on Taegis