kusto-query-language topic

List kusto-query-language repositories

Sentinel_KQL

91
Stars
19
Forks
Watchers

In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (a SIEM tool).

verified publisher icon ep3p

MDE-DFIR-Resources

308
Stars
35
Forks
Watchers

A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.

verified publisher icon cyb3rmik3

KQL-threat-hunting-queries

449
Stars
51
Forks
Watchers

A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

verified publisher icon cyb3rmik3

nl2query

49
Stars
2
Forks
Watchers

A framework for converting natural language text inputs to corresponding Pandas, MongoDB, Kusto and Neo4j (Cypher) queries.

verified publisher icon Chirayu-Tripathi