Vardesyn — Tools & Resources

Cloud & Azure 9 links

🏗

Azure Architecture Center

learn.microsoft.com rank 96

Reference architectures, Cloud Adoption Framework, and landing zone blueprints.

☁

Azure Updates

azure.microsoft.com rank 96

Latest platform changes and new service launches — filtered by product area.

🗂

Cloud Adoption Framework

learn.microsoft.com rank 96

End-to-end guidance for Azure adoption at enterprise scale.

💬

Microsoft Tech Community

techcommunity.microsoft.com rank 96

Product blogs, announcements, expert discussions, and beta programme sign-ups.

⚖

Well-Architected Framework

learn.microsoft.com rank 96

Reliability, security, cost optimisation, performance, and operations pillars.

✅

Azure Quick Review

github.com/Azure rank 91

CLI assessment tool that scans Azure resources for quick recommendations and platform review signals.

Quick start (PowerShell)

winget install Microsoft.AzureQuickReview
azqr scan --subscription <subscription-id>

📋

Azure Review Checklists

github.com/Azure rank 90

Microsoft-maintained review checklists for Azure workloads, landing zones, AVD, and platform areas.

🗺

Azure Governance Visualizer

github.com/Azure rank 86

Generate tenant and management-group governance documentation from Azure Policy, RBAC, and hierarchy data.

Quick start (PowerShell)

Install-Module AzGovViz -Scope CurrentUser
Export-AzGovViz -ManagementGroupId <mg-id>

📊

Powerpipe

powerpipe.io rank 82

Open dashboards and benchmarks for cloud infrastructure, security posture, and operational reporting.

Identity & Zero Trust 11 links

🪪

Entra ID — What's New

learn.microsoft.com rank 96

Monthly changelog for the Microsoft Entra platform — essential for staying current.

⚙

Graph Explorer

developer.microsoft.com rank 96

Interactive browser-based API testing for Microsoft Graph — M365 and Entra.

🔔

MSRC Security Update Guide

msrc.microsoft.com rank 96

Microsoft's authoritative CVE and patch release tracker — updated each Patch Tuesday.

🔐

Zero Trust Guidance Center

learn.microsoft.com rank 96

Microsoft's full Zero Trust deployment guidance across all six pillars.

📄

Conditional Access Documenter

idpowertoys.merill.net rank 89

Generate readable Conditional Access documentation and export views for review conversations.

🩻

Graph X-Ray

graphxray.merill.net rank 88

Reveal the Microsoft Graph calls behind portal actions — excellent for automation discovery.

🪪

Azure AD Assessment

github.com/AzureAD rank 84

Microsoft identity assessment scripts for reviewing Entra ID configuration and posture.

🧰

MSIdentityTools

azuread.github.io rank 83

PowerShell module collection for Microsoft identity administration, discovery, and reporting.

Quick start (PowerShell)

Install-Module MSIdentityTools -Scope CurrentUser
Import-Module MSIdentityTools

🔬

CA Optics

github.com/jsa2 rank 80

Conditional Access analysis and visualisation for spotting overlap, gaps, and policy complexity.

🧿

Graph PreConsent Explorer

github.com/zh54321 rank 78

Explore pre-consented Microsoft Graph permissions and app exposure patterns.

🧪

AADInternals

aadinternals.com rank 68

Entra ID / M365 security research toolset — reconnaissance, attacks, and forensics.

Quick start (PowerShell)

Install-Module AADInternals -Force
Import-Module AADInternals
Get-AADIntTenantID -Domain contoso.com

Threat Intel & Frameworks 11 links

🧑‍🍳

CyberChef

gchq.github.io rank 98

The universal browser workbench for decoding, transforming, and analysing security artefacts.

🧾

urlscan.io

urlscan.io rank 94

Public URL detonation and web artefact capture for phishing, malware, and infrastructure triage.

⚠

CISA KEV Catalog

cisa.gov rank 92

Known exploited vulnerabilities — the definitive patch prioritisation source.

📋

NVD / NIST CVE Database

nvd.nist.gov rank 92

Authoritative vulnerability scoring and enriched CVE details from NIST.

🧠

OpenCTI

github.com/OpenCTI-Platform rank 91

Open-source threat intelligence platform for modelling entities, relationships, and indicators.

🛠

CISA CSET

github.com/cisagov rank 90

CISA Cyber Security Evaluation Tool for maturity, control, and sector-aligned assessments.

🌫

GreyNoise Visualizer

viz.greynoise.io rank 84

Classify internet-wide scanner traffic — separate background noise from targeted attacks.

🗺

MITRE ATT&CK

attack.mitre.org rank 84

Adversary tactics, techniques, and procedures matrix — the lingua franca of threat intel.

🧬

VirusTotal

virustotal.com rank 84

Multi-engine file, URL, IP, and hash analysis — 70+ AV engines.

💣

Zero Day Initiative

zerodayinitiative.com rank 84

Disclosed but unpatched vulnerabilities with countdown timers to full disclosure.

📡

AlienVault OTX

otx.alienvault.com rank 68

Open threat exchange — IOCs, pulses, threat feeds, and adversary profiles.

Offensive Security 5 links

🕷

PortSwigger Web Academy

portswigger.net rank 84

Free web app security labs — SQLi, XSS, OAuth, SSRF, and more. Best in class.

🔬

Snyk Security Database

security.snyk.io rank 84

Open source and container vulnerability intelligence with fix guidance.

📦

Hack The Box

hackthebox.com rank 68

Hands-on labs, machines, and CTF challenges for red and blue team skilling.

🪴

LOLBAS Project

lolbas-project.github.io rank 68

Living off the land binaries, scripts, and libraries — attacker and defender reference.

🎮

TryHackMe

tryhackme.com rank 68

Guided learning paths for offensive and defensive security with browser-based VMs.

Standards & Compliance 8 links

🏛

Microsoft Compliance Offerings

learn.microsoft.com rank 96

ISO, SOC, GDPR, FedRAMP, and 100+ compliance certifications for Microsoft cloud.

📏

CIS Benchmarks

cisecurity.org rank 92

Hardening guides for OS, cloud services, and applications — freely downloadable.

☁

CSA Cloud Controls Matrix v4

cloudsecurityalliance.org rank 92

Cloud-specific security controls with ISO, NIST, PCI-DSS, and GDPR mapping.

🔍

NCSC Cyber Assessment Framework

ncsc.gov.uk rank 92

UK government CAF for operators of essential services and critical infrastructure.

📐

NIST CSF 2.0

nist.gov rank 92

Identify, protect, detect, respond, recover, govern — updated 2024 framework.

🔟

OWASP Top 10

owasp.org rank 92

The ten most critical web application security risks — updated regularly.

📊

COBIT

isaca.org rank 68

IT governance and management framework by ISACA — widely used in audit contexts.

🏅

ISO/IEC 27001:2022

iso.org rank 68

Information security management systems — the gold standard for certification.

Government CERTs & Advisories 6 links

🇺🇸

CISA Advisories

cisa.gov rank 92

US cybersecurity advisories, alerts, and threat notices — first-mover on major incidents.

🇪🇺

ENISA

enisa.europa.eu rank 92

EU Agency for Cybersecurity — policy, threat landscape reports, and NIS2 guidance.

🇬🇧

NCSC UK

ncsc.gov.uk rank 92

UK national cyber security centre — advisories, guidance, and the Cyber Essentials scheme.

🇳🇴

NSM — Norwegian Security Authority

nsm.no rank 92

Norwegian national security authority — threat assessments and security principles.

🇩🇪

BSI — Federal Office for Information Security

bsi.bund.de rank 68

German national cybersecurity authority — standards, advisories, and IT-Grundschutz.

🛡

NATO Cyber Defence

nato.int rank 68

Alliance-level cyber defence posture, policy, and collective response capabilities.

Annual Threat Reports 6 links

🌍

ENISA Threat Landscape

enisa.europa.eu rank 92

EU threat landscape overview covering major threat actors and emerging trends.

📘

CrowdStrike Global Threat Report

crowdstrike.com rank 68

Nation-state actor activity, eCrime trends, and breakout time benchmarks.

☁

Google Cloud Threat Horizons

services.google.com rank 68

Bi-annual cloud-focused threat intelligence report from Google's security teams.

📗

Google Mandiant M-Trends

mandiant.com rank 68

Frontline incident response insights and adversary trends from 1000s of engagements.

📙

Unit 42 Global IR Report

paloaltonetworks.com rank 68

Palo Alto's incident response findings and attacker TTPs across sectors.

📕

Verizon DBIR

verizon.com rank 68

Data Breach Investigations Report — the industry gold standard since 2008.

Network & OSINT 6 links

🛰

Shodan

shodan.io rank 89

Internet-connected asset search for exposure discovery and perimeter validation.

🔭

Censys Search

search.censys.io rank 84

Internet-wide host and certificate enumeration — OSINT for attack surface mapping.

🌫

GreyNoise Visualizer

viz.greynoise.io rank 84

Separate internet background noise from real targeted attack traffic.

📬

MXToolbox

mxtoolbox.com rank 84

MX, SPF, DKIM, DMARC, blacklist, and DNS diagnostics in one place.

⛏

Dig Web Interface

digwebinterface.com rank 68

Browser-based DNS query tool with multi-server propagation checking.

🌐

DomainTools WHOIS

whois.domaintools.com rank 68

Domain ownership, registration history, and reverse WHOIS lookups.

AI & LLM Security 6 links

🛡

Azure OpenAI Content Filtering

learn.microsoft.com rank 96

Configurable safety and content filtering layers for Azure OpenAI deployments.

🔴

Microsoft AI Red Team

learn.microsoft.com rank 96

Guidance and open-source tools for adversarial AI testing — PyRIT included.

Quick start (PowerShell)

pip install pyrit
# Microsoft's AI Red Teaming tool
python -c "from pyrit.common import default_values; default_values.load_default_env()"

🤖

OWASP LLM Top 10

owasp.org rank 92

Top 10 risks for large language model applications — prompt injection, data leakage, and more.

🔁

Microsoft Promptflow

github.com rank 88

Build, evaluate, and deploy LLM workflows with built-in safety evaluation tooling.

Quick start (Python)

pip install promptflow
pf flow init --flow my-flow
pf run create --flow my-flow --data data.jsonl

🗺

MITRE ATLAS

atlas.mitre.org rank 84

Adversarial threat landscape for AI systems — tactics and techniques matrix for ML.

🏘

AI Village

aivillage.org rank 68

DEF CON AI security research community — talks, tools, and CTF challenges.

Microsoft 365 Posture 5 links

🛟

CISA ScubaGear

github.com/cisagov rank 95

CISA assessment tooling for Secure Cloud Business Applications guidance across M365 services.

Quick start (PowerShell)

Install-Module ScubaGear -Scope CurrentUser
Invoke-SCuBA -ProductNames aad,exo,teams,defender

🧪

Maester

maester.dev rank 94

PowerShell/Pester test framework for Microsoft 365 and Entra ID security configuration drift.

Quick start (PowerShell)

Install-Module Maester -Scope CurrentUser
Install-MaesterTests
Invoke-Maester

📤

Microsoft Extractor Suite

readthedocs.io rank 86

Extract Microsoft 365 evidence and configuration data for incident response and tenant review.

🩺

Defender EDR Telemetry Comparison

edr-telemetry.com rank 82

Compare Windows EDR telemetry coverage and understand what Defender for Endpoint sees.

🧭

M365 Tenant Analyzer

m365analyzer.com rank 78

Browser-based tenant posture review for Microsoft 365 configuration and exposure checks.

KQL & Detection 3 links

🔎

KQL Search

kqlsearch.com rank 86

Searchable KQL query catalogue for Defender, Sentinel, and Azure Monitor use cases.

🕵

Kusto Detective Agency

detective.kusto.io rank 84

Microsoft-created KQL learning game with realistic investigation puzzles.

🧩

AttackRuleMap

attackrulemap.com rank 77

Map detection rules and analytics to MITRE ATT&CK tactics and techniques.

Open Source & Dev Tools 5 links

🔧

Azure Bicep

github.com/Azure/bicep rank 88

Domain-specific language for declarative Azure IaC — cleaner and safer than raw ARM JSON.

Quick start (PowerShell)

winget install -e --id Microsoft.Bicep
bicep build main.bicep
az deployment group create --template-file main.json -g my-rg

🪪

Entra ID OSS Tools

github.com/microsoft rank 88

Open-source identity tooling maintained by the Microsoft Entra engineering team.

🔍

Prowler

prowler.com rank 88

Open-source cloud security posture management and compliance scanning across Azure, AWS, GCP.

Quick start (Python)

pip install prowler
prowler azure --az-cli-auth
prowler azure --compliance cis_2.0_azure

🦊

CloudFox

github.com rank 76

Attack surface enumeration for AWS, Azure, and GCP — red team and cloud security review.

Quick start (PowerShell)

# Install via Go
go install github.com/BishopFox/cloudfox@latest
cloudfox azure all-checks -t <tenant-id>

🌍

Terraform / OpenTofu

terraform.io rank 68

Multi-cloud IaC with mature AzureRM and AzureAD providers for Azure deployments.

Quick start (PowerShell)

terraform init
terraform plan -out=tfplan
terraform apply tfplan

Tools & Resources

Operator Toolbox

Base64 encode / decode

URL encode / decode

JWT decoder

Text hash

IPv4 CIDR calculator

Unix time converter

12 Categories · 81 Links