1. Threathunter PlaybookA Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.
2. BlacksmithBuilding environments to replicate small networks and deploy applications
3. Azure Sentinel2goAzure Sentinel2Go is an open source project developed to expedite the deployment of an Azure Sentinel lab.
7. OssemOpen Source Security Events Metadata (OSSEM)
10. API-To-EventA repo to document API functions mapped to security events across diverse platforms
14. SimuLandCloud Templates and scripts to deploy mordor environments
15. Set-AuditRuleUseful access control entries (ACE) on system access control list (SACL) of securable objects to find potential adversarial activity