microsoft-sentinel topic

List microsoft-sentinel repositories

Microsoft-Sentinel-SecOps

231
Stars
61
Forks
Watchers

Microsoft Sentinel SOC Operations

verified publisher icon eshlomo1

Threat-Hunting-and-Detection

566
Stars
91
Forks
Watchers

Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).

verified publisher icon Cyb3r-Monk

Sentinel_KQL

91
Stars
19
Forks
Watchers

In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (a SIEM tool).

verified publisher icon ep3p

SentinelAutomationModules

194
Stars
54
Forks
Watchers

The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel

verified publisher icon briandelmsft

KQL-Queries

42
Stars
8
Forks
Watchers

Ian Hanley's deceptively simple KQL queries.

verified publisher icon EEN421

KQL-threat-hunting-queries

449
Stars
51
Forks
Watchers

A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

verified publisher icon cyb3rmik3

reversinglabs-siem-rules

58
Stars
6
Forks
Watchers

A collection of various SIEM rules relating to malware family groups.

verified publisher icon reversinglabs

MicrosoftSentinelStuff

16
Stars
4
Forks
Watchers

Misc. content for Microsoft Sentinel

verified publisher icon h0ffayyy