Skip to content
@FalconForceTeam

FalconForce

Pinned Loading

  1. FalconHound FalconHound Public

    FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log ag…

    Go 792 55

  2. FalconFriday FalconFriday Public

    Hunting queries and detections

    784 94

  3. BOF2shellcode BOF2shellcode Public

    POC tool to convert CobaltStrike BOF files to raw shellcode

    C 193 28

  4. KQLAnalyzer KQLAnalyzer Public

    REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.

    C# 32 12

  5. FalconForge FalconForge Public

    This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deploying a repository of use-cases for the Sentinel and Microsoft 3…

    Python 15 9

  6. SOAPHound SOAPHound Public

    SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

    C# 735 76

Repositories

Showing 10 of 15 repositories
  • dAWShund Public

    Putting a leash on naughty AWS permissions

    FalconForceTeam/dAWShund’s past year of commit activity
    Python 69 BSD-3-Clause 5 0 0 Updated Apr 11, 2025
  • FalconHound Public

    FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log aggregation tool.

    FalconForceTeam/FalconHound’s past year of commit activity
    Go 792 BSD-3-Clause 55 0 0 Updated Feb 17, 2025
  • KQLAnalyzer Public

    REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.

    FalconForceTeam/KQLAnalyzer’s past year of commit activity
    C# 32 12 0 0 Updated Jan 24, 2025
  • reply-url-brute Public

    Tool to enumerate unregistered reply URLs for single and multitenant apps in Azure

    FalconForceTeam/reply-url-brute’s past year of commit activity
    Python 14 BSD-3-Clause 2 0 0 Updated Jan 23, 2025
  • bof-winrm-client Public
    FalconForceTeam/bof-winrm-client’s past year of commit activity
    C++ 107 BSD-3-Clause 15 0 0 Updated Jan 23, 2025
  • bof-winrm-plugin-jump Public
    FalconForceTeam/bof-winrm-plugin-jump’s past year of commit activity
    C++ 27 BSD-3-Clause 2 0 0 Updated Jan 23, 2025
  • FalconFriday Public

    Hunting queries and detections

    FalconForceTeam/FalconFriday’s past year of commit activity
    784 BSD-3-Clause 94 1 1 Updated Jan 17, 2025
  • SOAPHound Public

    SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

    FalconForceTeam/SOAPHound’s past year of commit activity
    C# 735 GPL-3.0 76 4 1 Updated Feb 3, 2024
  • AzureHoundAutoCollect Public

    Some plumbing to automate the collection of AzureHound

    FalconForceTeam/AzureHoundAutoCollect’s past year of commit activity
    Shell 3 2 0 0 Updated Jul 24, 2023
  • ParrotForce Public

    Azure playbook for automatic evidence collection

    FalconForceTeam/ParrotForce’s past year of commit activity
    9 5 0 0 Updated Jul 3, 2023
View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Most used topics

Loading…