Skip to content
@CanadianShield

Canadian Shield

Canadian Security CSU

Pinned Loading

  1. ADFSLogs ADFSLogs Public

    This repo lists examples of events generated during specific logon scenarios with ADFS.

  2. ManageTravelers ManageTravelers Public

    You wonder how to manage your travelers ? In this scenario we describe how to manage them with Identity Governance and Conditional Access.

    10 1

  3. ExportTableHistory ExportTableHistory Public

    PoC to extract the history of a table in Log Analytics and store the output in blob container.

    PowerShell

  4. ASIM ASIM Public

    A step by step to write your own ASIM parser.

    1

  5. SAMRTraces SAMRTraces Public

    List of SAM-R traces for common SAM-R operations. This is meant to help security analysts understand network traces containing this protocol.

  6. Spoors Spoors Public

    Spoors is a local training initiative. The idea is to uncover the traces, audit logs and some of the OS artifacts left behind during internal sessions for which summaries are publicly shared here.

Repositories

Showing 10 of 10 repositories
  • HuntingBites Public
    CanadianShield/HuntingBites’s past year of commit activity
    2 0 0 0 Updated Nov 29, 2024
  • CustomClaimProvider Public

    This example demonstrates how to add custom claims from Entra ID or external source.

    CanadianShield/CustomClaimProvider’s past year of commit activity
    0 MIT 0 0 0 Updated Jun 18, 2024
  • ManageTravelers Public

    You wonder how to manage your travelers ? In this scenario we describe how to manage them with Identity Governance and Conditional Access.

    CanadianShield/ManageTravelers’s past year of commit activity
    10 MIT 1 0 0 Updated Mar 20, 2024
  • ExportTableHistory Public

    PoC to extract the history of a table in Log Analytics and store the output in blob container.

    CanadianShield/ExportTableHistory’s past year of commit activity
    PowerShell 0 MIT 0 0 0 Updated Nov 12, 2023
  • ASIM Public

    A step by step to write your own ASIM parser.

    CanadianShield/ASIM’s past year of commit activity
    1 0 0 0 Updated Oct 4, 2023
  • CustomAuthExtensions Public

    Example to use Custom authentication extensions with Logic Apps

    CanadianShield/CustomAuthExtensions’s past year of commit activity
    0 MIT 1 0 0 Updated May 16, 2023
  • MicrosoftTechTalk Public

    Liste des requetés utilisées pendant les sessions Microsoft TechTalk / The list of queries presented during Microsoft TechTalk sessions

    CanadianShield/MicrosoftTechTalk’s past year of commit activity
    1 1 0 0 Updated Apr 19, 2022
  • SAMRTraces Public

    List of SAM-R traces for common SAM-R operations. This is meant to help security analysts understand network traces containing this protocol.

    CanadianShield/SAMRTraces’s past year of commit activity
    0 0 0 0 Updated Jan 17, 2022
  • Spoors Public

    Spoors is a local training initiative. The idea is to uncover the traces, audit logs and some of the OS artifacts left behind during internal sessions for which summaries are publicly shared here.

    CanadianShield/Spoors’s past year of commit activity
    0 0 0 0 Updated Dec 18, 2021
  • ADFSLogs Public

    This repo lists examples of events generated during specific logon scenarios with ADFS.

    CanadianShield/ADFSLogs’s past year of commit activity
    0 0 0 0 Updated Nov 29, 2021

Top languages

Loading…

Most used topics

Loading…