defender-for-endpoint topic

List defender-for-endpoint repositories

MDATP

455
Stars
59
Forks
Watchers

MDATP

verified publisher icon alexverboon

FalconFriday

662
Stars
73
Forks
Watchers

Hunting queries and detections

verified publisher icon FalconForceTeam

Threat-Hunting-and-Detection

566
Stars
91
Forks
Watchers

Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).

verified publisher icon Cyb3r-Monk

Hunting-Queries-Detection-Rules

1.0k
Stars
188
Forks
Watchers

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

verified publisher icon Bert-JanP

AdvancedHuntingQueries

94
Stars
12
Forks
Watchers

Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant

verified publisher icon lawndoc

ASRGEN

33
Stars
5
Forks
Watchers

ASR Configurator, Essentials and Atomic Testing

verified publisher icon MHaggis

Security-Blue-Team

19
Stars
4
Forks
Watchers

This repository will describe the details surrounding the SIEM (wazuh) mini project, which will cover all aspects of topology design, deployment, rules, integration, and fine tune.

verified publisher icon 13ihsan92

RemoteManagementMonitoringTools

64
Stars
6
Forks
Watchers

Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations

verified publisher icon jischell-msft