Azure/MDTI-Solutions external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Azure/MDTI-Solutions

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Azure/MDTI-Solutions)

Close

Azure / MDTI-SolutionsView on GitHubMore

• External links
• Readme badge

Repository to publish sample use cases, templates, solutions, automations for Microsoft Defender Threat Intelligence (MDTI) product

☆80Sep 9, 2024Updated last year

Alternatives and similar repositories for MDTI-Solutions

Users that are interested in MDTI-Solutions are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• rod-trent / OnPremSecMonitoring4Sentinel

  View on GitHub
  ☆18Jul 13, 2022Updated 3 years ago
• garybushey / SentinelConfigurationToWord

  View on GitHub
  Create a Word document showing your Sentinel configuration
  ☆14Nov 7, 2023Updated 2 years ago
• f-bader / SentinelARConverter

  View on GitHub
  Sentinel Analytics Rule converter PowerShell module
  ☆67Feb 24, 2026Updated last month
• JeffMichelmore / MDEKit

  View on GitHub
  ☆43Oct 11, 2023Updated 2 years ago
• ml58158 / AzureOpenAI-Playbook

  View on GitHub
  Azure OpenAI Playbook created for Microsoft Sentinel
  ☆13May 2, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• sreedharande / Microsoft-Sentinel-As-A-Code

  View on GitHub
  Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …
  ☆59Sep 15, 2022Updated 3 years ago
• briandelmsft / SentinelAutomationModules

  View on GitHub
  The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
  ☆277Jan 2, 2026Updated 3 months ago
• piaudonn / SecurityNotifications

  View on GitHub
  Send security notifications to your users when something important happened on their accounts (such as new MFA methods, atypical travels,…
  ☆10Apr 13, 2023Updated 2 years ago
• rod-trent / SentinelPlaybooks

  View on GitHub
  ☆59Jul 18, 2024Updated last year
• rod-trent / SentinelPS

  View on GitHub
  ☆30Nov 11, 2024Updated last year
• markolauren / sentinel

  View on GitHub
  ☆68Mar 9, 2026Updated last month
• Azure / MDEASM-Solutions

  View on GitHub
  Solutions developed by the MDEASM Customer Experience Engineering (CxE) Go-To Production (GTP) team for Azure MDEASM
  ☆29Feb 3, 2025Updated last year
• TheCloudScout / m365defender-adx

  View on GitHub
  ☆22Aug 29, 2023Updated 2 years ago
• xg5-simon / MS-Graph-BlueTeam

  View on GitHub
  MS Graph Commands and Tools for Blue Teamers
  ☆51Feb 4, 2026Updated 2 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• joeavanzato / RetrievIR

  View on GitHub
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆112Aug 26, 2024Updated last year
• Bert-JanP / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,679Apr 3, 2026Updated last week
• YongRhee-MDE / LiveResponse

  View on GitHub
  M365 MDATP Live Response sample scripts
  ☆81Nov 1, 2024Updated last year
• rod-trent / OpenAISecurity

  View on GitHub
  Scripts and Content for working with Open AI
  ☆170Apr 18, 2025Updated 11 months ago
• microsoft / ASDET

  View on GitHub
  ☆19Sep 3, 2021Updated 4 years ago
• muchdogesec / sigma2stix

  View on GitHub
  ⚠️ ARCHIVED**: This repository is no longer actively maintained. All Sigma rules are now managed and available in SIEM Rules
  ☆12Mar 19, 2026Updated 3 weeks ago
• PacktPublishing / Mastering-Microsoft-365-Defender

  View on GitHub
  Detecting and Responding to Threats using Microsoft 365 Defender, published by Packt
  ☆16Jul 10, 2023Updated 2 years ago
• reprise99 / Sentinel-Queries

  View on GitHub
  Collection of KQL queries
  ☆1,627Jan 29, 2026Updated 2 months ago
• secgroundzero / KQL_Reference_Manual

  View on GitHub
  ☆43May 22, 2021Updated 4 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• microsoft / Microsoft-Defender-for-Identity

  View on GitHub
  Additional resources to improve customer experience with Microsoft Defender for Identity
  ☆123Updated this week
• oloruntolaallbert / MS-Attack-Range

  View on GitHub
  An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…
  ☆64Mar 30, 2026Updated last week
• KnudsenMorten / AzLogDcrIngestPS

  View on GitHub
  AzLogDcrIngestPS - Unleashing the power of Log Ingestion API with Azure LogAnalytics custom table v2, Azure Data Collection Rules and Azu…
  ☆33Jan 26, 2025Updated last year
• cventour / PoSH

  View on GitHub
  Random Powershell scripts
  ☆13Feb 13, 2024Updated 2 years ago
• rod-trent / AzureSentinelMisc

  View on GitHub
  Miscellaneous Azure Sentinel files that don't fall into other categories.
  ☆13Aug 23, 2021Updated 4 years ago
• AttacktheSOC / Azure-SecOps

  View on GitHub
  Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)
  ☆80Updated this week
• AndrewBlumhardt / SentinelReconTools

  View on GitHub
  Sentinel Recon Tools Workbook
  ☆14Aug 24, 2022Updated 3 years ago
• rod-trent / Azure-Sentinel-Cost-Troubleshooting-Kit

  View on GitHub
  Guidance and collateral for troubleshooting and managing Azure Sentinel data costs.
  ☆28Oct 9, 2023Updated 2 years ago
• ugurkocde / KQL_Intune

  View on GitHub
  ☆90Jan 10, 2024Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• LearningKijo / MDEtester

  View on GitHub
  MDE Tester is designed to help testing various features in Microsoft Defender for Endpoint.
  ☆194Feb 20, 2026Updated last month
• microsoft / Microsoft-365-Defender-Hunting-Queries

  View on GitHub
  Sample queries for Advanced hunting in Microsoft 365 Defender
  ☆2,055Feb 17, 2022Updated 4 years ago
• microsoft / msticpy-training

  View on GitHub
  Training and support materials for MSTICPy
  ☆18Jun 27, 2023Updated 2 years ago
• rod-trent / SentinelKQL

  View on GitHub
  Azure Sentinel KQL
  ☆471Jul 28, 2025Updated 8 months ago
• m4nbat / KustQueryLanguage_kql

  View on GitHub
  Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting
  ☆68Apr 1, 2026Updated last week
• msdirtbag / MicrosoftPurpleTeamToolkit

  View on GitHub
  ☆45Apr 10, 2024Updated 2 years ago
• rod-trent / MustLearnKQL

  View on GitHub
  Code included as part of the MustLearnKQL blog series
  ☆1,159Jan 30, 2026Updated 2 months ago