microsoft-sentinel topic

List microsoft-sentinel repositories
trafficstars

Microsoft-Sentinel-SecOps

231
Stars
61
Forks
Watchers

Microsoft Sentinel SOC Operations

verified publisher icon eshlomo1

Threat-Hunting-and-Detection

725
Stars
103
Forks
Watchers

Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).

verified publisher icon Cyb3r-Monk

Sentinel_KQL

115
Stars
23
Forks
Watchers

In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (a SIEM tool).

verified publisher icon ep3p

SentinelAutomationModules

203
Stars
56
Forks
Watchers

The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel

verified publisher icon briandelmsft

KQL-Queries

42
Stars
8
Forks
Watchers

Ian Hanley's deceptively simple KQL queries.

verified publisher icon EEN421

KQL-threat-hunting-queries

550
Stars
59
Forks
Watchers

A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

verified publisher icon cyb3rmik3

reversinglabs-siem-rules

58
Stars
6
Forks
Watchers

A collection of various SIEM rules relating to malware family groups.

verified publisher icon reversinglabs

MicrosoftSentinelStuff

18
Stars
4
Forks
18
Watchers

Misc. content for Microsoft Sentinel

verified publisher icon h0ffayyy