MCADDF - A holistic operational framework bridging the gap between on-prem Active Directory and Cloud-native (Entra ID/Azure) security. This repository provides a structured library of verified attack vectors and detection logic, organized via the SERVTEP ID system and mapped to the current MITRE ATT&CK landscape. Curated by Pchelnikau Artur.
azure active-directory onedrive exchange sharepoint hardening sharepoint-online red-team zero-trust exchange-online blue-team mitre-attack m365 purple-team tiering microsoft-security cybersecurity-framework kill-chain entra-id mcaddf
-
Updated
Dec 29, 2025