Skip to content

Navigation Menu

Appearance settings

invictus-ir

Explore
By company size
By use case
By industry
View all solutions
Topics
- AI
- DevOps
- Security
- Software Development
- View all
Explore
- GitHub Sponsors
  Fund open source developers
- The ReadME Project
  GitHub community articles
Repositories
- Enterprise platform
  AI-powered developer platform
Available add-ons
Pricing

Search code, repositories, users, issues, pull requests...

Search

Clear

Search syntax tips

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches

Use saved searches to filter your results more quickly

Name

Query

To see all available qualifiers, see our documentation.

Appearance settings

You signed in with another tab or window. Reload to refresh your session. You signed out in another tab or window. Reload to refresh your session. You switched accounts on another tab or window. Reload to refresh your session.

Dismiss alert

Invictus Incident Response

Verified
We've verified that the organization invictus-ir controls the domain:
- invictus-ir.com
Learn more about verified organizations

129 followers
https://invictus-ir.com

Overview
Repositories
Projects
Packages
People

More

Overview
Repositories
Projects
Packages
People

Popular repositories Loading

Microsoft-Extractor-Suite Microsoft-Extractor-Suite Public

A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.

PowerShell 659 98
Invictus-AWS Invictus-AWS Public

A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of incident response.

Python 192 16
ALFA ALFA Public

ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit logs and to perform automated forensic analysis on the audit …

Python 164 25
aws-cheatsheet aws-cheatsheet Public

A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.

76 16
Blue-team-app-Office-365-and-Azure Blue-team-app-Office-365-and-Azure Public

72 10
o365_dataset o365_dataset Public

A dataset containing Office 365 Unified Audit Logs for security research and detection

52 5

Repositories

Loading

Type

Select type

All Public Sources Forks Archived Mirrors Templates

Language

Select language

All PowerShell Python SCSS Shell

Sort

Select order

Last updated Name Stars

Showing 10 of 21 repositories

KubeForenSys Public
A Kubernetes Forensic Collection Framework for Azure Kubernetes Service

invictus-ir/KubeForenSys’s past year of commit activity

Python 13 2 0 0 Updated Jul 17, 2025
Microsoft-Extractor-Suite Public
A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.

invictus-ir/Microsoft-Extractor-Suite’s past year of commit activity

PowerShell 659 GPL-2.0 98 3 1 Updated Jul 16, 2025
IOCs Public
Invictus Threat Intelligence: IOCs and TTPs from blogs, research and more

invictus-ir/IOCs’s past year of commit activity

12 0 0 0 Updated Jun 27, 2025
ALFA Public
ALFA stands for Automated Audit Log Forensic Analysis for Google Workspace. You can use this tool to acquire all Google Workspace audit logs and to perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework

invictus-ir/ALFA’s past year of commit activity

Python 164 MIT 25 0 0 Updated Mar 3, 2025
entra-apps Public
List of Microsoft Apps in Entra ID

invictus-ir/entra-apps’s past year of commit activity

9 2 1 0 Updated Jan 3, 2025
Invictus-training Public
Repository with supporting materials for Invictus Academy/Training

invictus-ir/Invictus-training’s past year of commit activity

Shell 43 5 0 0 Updated Jan 3, 2025
Blue-team-app-Office-365-and-Azure Public

invictus-ir/Blue-team-app-Office-365-and-Azure’s past year of commit activity

72 GPL-3.0 10 0 0 Updated Oct 21, 2024
Invictus-AWS Public
A tool for AWS incident response, that allows for enumeration, acquisition and analysis of data from AWS environments for the purpose of incident response.

invictus-ir/Invictus-AWS’s past year of commit activity

Python 192 MIT 16 0 1 Updated Oct 2, 2024
talks Public
An overview of our talks at security conferences

invictus-ir/talks’s past year of commit activity

8 0 0 0 Updated May 21, 2024
aws-cheatsheet Public
A cheatsheet containing AWS CloudTrail events that can be used for Incident Response purposes or Detection Engineering.

invictus-ir/aws-cheatsheet’s past year of commit activity

76 MIT 16 0 1 Updated May 8, 2024

View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.

Top languages

Loading…

Uh oh!

There was an error while loading. Please reload this page.

Most used topics

Loading…

Uh oh!

There was an error while loading. Please reload this page.

Footer

© 2025 GitHub, Inc.

Footer navigation

Terms
Privacy
Security
Status
Docs
Contact

You can’t perform that action at this time.