andrewmichaellloyd's repositories
Defender_Device_Control_Fix
Working on the fix for https://github.com/microsoft/mdatp-devicecontrol/
AADAppAudit
AADAppAudit
AddictedtoKQL
This is an advanced KQL blog series and book
ADReplicationTool
Fixed AD Replication Tool
AS-IAM-Entra-ID-Master-Playbook
Run two identity access management playbooks at once from a Microsoft Sentinel incident
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
awesome-entra
😎 Awesome list of all things related to Microsoft Entra
AzADServicePrincipalInsights
Insights and change tracking on Azure Active Directory Service Principals (Enterprise Applications and Applications)
powershell-scripts
Various Powershell scripts
azqr
Azure Quick Review
Azure-Network-Security
Resources for improving Customer Experience with Azure Network Security
AzureDiagnosticSettings
Rapid Azure Diagnostic deployments
BloodHound
Six Degrees of Domain Admin
cloud-rolesandops
Guidance for routine operations in Azure.
Copilot-For-Security
Microsoft Copilot for Security is a generative AI-powered security solution that helps increase the efficiency and capabilities of defenders to improve security outcomes at machine speed and scale, while remaining compliant to responsible AI principles
DCToolbox
Tools for Microsoft cloud fans
ImportExcel
PowerShell module to import/export Excel spreadsheets, without Excel
KQL
Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
MDE-Quickstart
MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore
MSIdentityTools
Repository for the Microsoft Identity Tools PowerShell module which provides various tools for performing enhanced Identity administration activities.
privacy.sexy
Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy
psPAS
PowerShell module for CyberArk Privileged Access Security REST API
SentinelKQL
Azure Sentinel KQL
SentinelReconTools
Sentinel Recon Tools Workbook
SharpHound
C# Data Collector for BloodHound