kusto-query-language topic

List kusto-query-language repositories

Sentinel_KQL

97
Stars
20
Forks
Watchers

In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (a SIEM tool).

verified publisher icon ep3p

MDE-DFIR-Resources

328
Stars
37
Forks
Watchers

A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.

verified publisher icon cyb3rmik3

KQL-threat-hunting-queries

550
Stars
59
Forks
Watchers

A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

verified publisher icon cyb3rmik3

nl2query

66
Stars
5
Forks
Watchers

A framework for converting natural language text inputs to corresponding Pandas, MongoDB, Kusto and Neo4j (Cypher) queries.

verified publisher icon Chirayu-Tripathi