Skip to content
@invictus-ir

Invictus Incident Response

Popular repositories Loading

  1. Microsoft-Extractor-Suite Microsoft-Extractor-Suite Public

    A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.

    PowerShell 501 74

  2. Invictus-AWS Invictus-AWS Public

    A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of incident response.

    Python 183 14

  3. ALFA ALFA Public

    ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit logs and to perform automated forensic analysis on the audit …

    Python 152 22

  4. Blue-team-app-Office-365-and-Azure Blue-team-app-Office-365-and-Azure Public

    70 10

  5. aws-cheatsheet aws-cheatsheet Public

    A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.

    63 13

  6. o365_dataset o365_dataset Public

    A dataset containing Office 365 Unified Audit Logs for security research and detection

    48 5

Repositories

Showing 10 of 19 repositories
  • Microsoft-Extractor-Suite Public

    A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.

    invictus-ir/Microsoft-Extractor-Suite’s past year of commit activity
    PowerShell 501 GPL-2.0 74 5 0 Updated Dec 17, 2024
  • ALFA Public

    ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit logs and to perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework

    invictus-ir/ALFA’s past year of commit activity
    Python 152 MIT 22 1 1 Updated Dec 2, 2024
  • Blue-team-app-Office-365-and-Azure Public
    invictus-ir/Blue-team-app-Office-365-and-Azure’s past year of commit activity
    70 GPL-3.0 10 0 0 Updated Oct 21, 2024
  • Invictus-training Public

    Repository with supporting materials for Invictus Academy/Training

    invictus-ir/Invictus-training’s past year of commit activity
    Shell 40 3 0 0 Updated Oct 6, 2024
  • Invictus-AWS Public

    A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of incident response.

    invictus-ir/Invictus-AWS’s past year of commit activity
    Python 183 MIT 14 0 0 Updated Oct 2, 2024
  • talks Public

    An overview of our talks at security conferences

    invictus-ir/talks’s past year of commit activity
    6 0 0 0 Updated May 21, 2024
  • aws-cheatsheet Public

    A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.

    invictus-ir/aws-cheatsheet’s past year of commit activity
    63 MIT 13 0 1 Updated May 8, 2024
  • KQL-threat-hunting-queries Public Forked from cyb3rmik3/KQL-threat-hunting-queries

    A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

    invictus-ir/KQL-threat-hunting-queries’s past year of commit activity
    5 MIT 70 0 0 Updated Dec 27, 2023
  • entra-apps Public

    List of Microsoft Apps in Entra ID

    invictus-ir/entra-apps’s past year of commit activity
    7 2 0 1 Updated Nov 8, 2023
  • kql_queries Public

    KQL queries for Incident Response

    invictus-ir/kql_queries’s past year of commit activity
    9 4 0 0 Updated Oct 31, 2023
View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Most used topics

Loading…