Pinned Loading
Repositories
- FalconHound Public
FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log aggregation tool.
FalconForceTeam/FalconHound’s past year of commit activity - KQLAnalyzer Public
REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
FalconForceTeam/KQLAnalyzer’s past year of commit activity - reply-url-brute Public
Tool to enumerate unregistered reply URLs for single and multitenant apps in Azure
FalconForceTeam/reply-url-brute’s past year of commit activity - FalconForge Public
This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deploying a repository of use-cases for the Sentinel and Microsoft 365 Defender products.
FalconForceTeam/FalconForge’s past year of commit activity - ADExplorerSnapshot.py Public Forked from c3c/ADExplorerSnapshot.py
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.
FalconForceTeam/ADExplorerSnapshot.py’s past year of commit activity