Alternatives and similar repositories for Azure-Sentinel-BYOML

Users that are interested in Azure-Sentinel-BYOML are comparing it to the libraries listed below

• splunkalicious / PII_Tools
  ☆10Updated 5 years ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆129Updated 5 years ago
• microsoft / msticpy-lab
  A lab environment for learning about MSTICPy
  ☆38Updated 2 years ago
• Azure / AI-Security-Risk-Assessment
  ☆65Updated last year
• microsoft / Scalable-Infrastructure-for-Investigation-and-Incident-Response
  Powershell Scripts to automatically deploy an image of a prebuilt VM (up-to-date and with pre-deployed tools and apps) to every region yo…
  ☆18Updated 2 years ago
• sensoroni / sensoroni
  Web-based sensor management suite
  ☆20Updated 2 years ago
• Cyb3rWard0g / floki
  Agentic Workflows Made Simple
  ☆159Updated 8 months ago
• OTRF / OSSEM-CDM
  OSSEM Common Data Model
  ☆56Updated 3 years ago
• OTRF / notebooks-forge
  A collection of notebooks built for defensive and offensive operations.
  ☆77Updated 5 years ago
• format81 / TI-Mindmap-GPT
  AI-powered tool designed to help producing Threat Intelligence Mindmap.
  ☆103Updated 6 months ago
• MSSAPSCA1 / Azure_Sentinel
  Bulk turn on Analytic rules in Azure Sentinel
  ☆19Updated 4 years ago
• center-for-threat-informed-defense / sightings_ecosystem
  Sightings Ecosystem gives cyber defenders visibility into what adversaries actually do in the wild. With your help, we are tracking MITRE…
  ☆37Updated 6 months ago
• cylaris / awesomekql
  Microsoft Sentinel, Defender for Endpoint - KQL Detection Packs
  ☆54Updated 2 years ago
• Prelude-SIEM / Prelude-SIEM
  The official Prelude SIEM GitHub of https://www.prelude-siem.org
  ☆34Updated 9 years ago
• jangeisbauer / AdvancedHunting
  Advanced Hunting Queries for Microsoft Security Products
  ☆108Updated 2 years ago
• microsoft / AzDetectSuite
  A collection of ARM-based detections for Azure/AzureAD based TTPs
  ☆89Updated last year
• trustoncloud / threatmodel-for-azure-storage
  Threat model for Azure Storage - Library of all the attack scenarios on Azure Storage, and how to mitigate them following a risk-based ap…
  ☆59Updated 2 years ago
• rinure-msft / Azure-Sentinel
  Cloud-native SIEM for intelligent security analytics for your entire enterprise.
  ☆20Updated 2 years ago
• swiftbird07 / IRIS-SOAR
  🚀 IRIS-SOAR: Modular SOAR (Security Orchestration, Automation, and Response) implementation in Python. Designed to complement DFIR-IRIS …
  ☆11Updated last year
• FalconForceTeam / KQLAnalyzer
  REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
  ☆44Updated 2 months ago
• rod-trent / SentinelPlaybooks
  ☆59Updated last year
• AdvancedThreatAnalytics / threat-analytics-search
  Threat Analytics Search Chrome Extension
  ☆12Updated last year
• microsoft / mstic
  Microsoft Threat Intelligence
  ☆198Updated this week
• w8mej / ThreatPlays
  Sharing Threat Hunting runbooks
  ☆25Updated 6 years ago
• PwC-IR / MIA-MailItemsAccessed-
  Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…
  ☆41Updated 5 years ago
• sttor / osquery-wazuh-response
  Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug
  ☆11Updated 5 years ago
• MISP / best-practices-in-threat-intelligence
  Best practices in threat intelligence
  ☆48Updated 3 years ago
• inodee / spl-to-kql
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆44Updated 5 years ago
• eshlomo1 / Microsoft-Sentinel-SecOps
  Microsoft Sentinel SOC Operations
  ☆262Updated last year
• wortell / KQL
  KQL queries for Advanced Hunting
  ☆176Updated 5 years ago