Azure/MDTI-Solutions external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Azure/MDTI-Solutions

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Azure/MDTI-Solutions)

Close

Azure / MDTI-SolutionsView on GitHubMore

• External links
• Readme badge

Repository to publish sample use cases, templates, solutions, automations for Microsoft Defender Threat Intelligence (MDTI) product

☆82Sep 9, 2024Updated last year

Alternatives and similar repositories for MDTI-Solutions

Users that are interested in MDTI-Solutions are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• rod-trent / OnPremSecMonitoring4Sentinel

  View on GitHub
  ☆18Jul 13, 2022Updated 3 years ago
• garybushey / SentinelConfigurationToWord

  View on GitHub
  Create a Word document showing your Sentinel configuration
  ☆14Nov 7, 2023Updated 2 years ago
• f-bader / SentinelARConverter

  View on GitHub
  Sentinel Analytics Rule converter PowerShell module
  ☆69Feb 24, 2026Updated 2 months ago
• JeffMichelmore / MDEKit

  View on GitHub
  ☆43Oct 11, 2023Updated 2 years ago
• ml58158 / AzureOpenAI-Playbook

  View on GitHub
  Azure OpenAI Playbook created for Microsoft Sentinel
  ☆13May 2, 2024Updated 2 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• sreedharande / Microsoft-Sentinel-As-A-Code

  View on GitHub
  Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …
  ☆60Sep 15, 2022Updated 3 years ago
• briandelmsft / SentinelAutomationModules

  View on GitHub
  The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
  ☆280Jan 2, 2026Updated 4 months ago
• piaudonn / SecurityNotifications

  View on GitHub
  Send security notifications to your users when something important happened on their accounts (such as new MFA methods, atypical travels,…
  ☆10Apr 13, 2023Updated 3 years ago
• rod-trent / SentinelPS

  View on GitHub
  ☆30Nov 11, 2024Updated last year
• rod-trent / SentinelPlaybooks

  View on GitHub
  ☆60Jul 18, 2024Updated last year
• markolauren / sentinel

  View on GitHub
  ☆69Apr 20, 2026Updated last month
• Azure / MDEASM-Solutions

  View on GitHub
  Solutions developed by the MDEASM Customer Experience Engineering (CxE) Go-To Production (GTP) team for Azure MDEASM
  ☆30Feb 3, 2025Updated last year
• TheCloudScout / m365defender-adx

  View on GitHub
  ☆22Aug 29, 2023Updated 2 years ago
• xg5-simon / MS-Graph-BlueTeam

  View on GitHub
  MS Graph Commands and Tools for Blue Teamers
  ☆51Feb 4, 2026Updated 3 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• joeavanzato / RetrievIR

  View on GitHub
  PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.
  ☆113Aug 26, 2024Updated last year
• Bert-JanP / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,694May 10, 2026Updated last week
• YongRhee-MDE / LiveResponse

  View on GitHub
  M365 MDATP Live Response sample scripts
  ☆82Nov 1, 2024Updated last year
• rod-trent / OpenAISecurity

  View on GitHub
  Scripts and Content for working with Open AI
  ☆172Apr 18, 2025Updated last year
• microsoft / ASDET

  View on GitHub
  ☆18Sep 3, 2021Updated 4 years ago
• muchdogesec / sigma2stix

  View on GitHub
  ⚠️ ARCHIVED**: This repository is no longer actively maintained. All Sigma rules are now managed and available in SIEM Rules
  ☆13Mar 19, 2026Updated 2 months ago
• reprise99 / Sentinel-Queries

  View on GitHub
  Collection of KQL queries
  ☆1,635Jan 29, 2026Updated 3 months ago
• PacktPublishing / Mastering-Microsoft-365-Defender

  View on GitHub
  Detecting and Responding to Threats using Microsoft 365 Defender, published by Packt
  ☆16Jul 10, 2023Updated 2 years ago
• secgroundzero / KQL_Reference_Manual

  View on GitHub
  ☆43May 22, 2021Updated 4 years ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• microsoft / Microsoft-Defender-for-Identity

  View on GitHub
  Additional resources to improve customer experience with Microsoft Defender for Identity
  ☆125Apr 6, 2026Updated last month
• oloruntolaallbert / MS-Attack-Range

  View on GitHub
  An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…
  ☆65Mar 30, 2026Updated last month
• KnudsenMorten / AzLogDcrIngestPS

  View on GitHub
  AzLogDcrIngestPS - Unleashing the power of Log Ingestion API with Azure LogAnalytics custom table v2, Azure Data Collection Rules and Azu…
  ☆35May 13, 2026Updated last week
• cventour / PoSH

  View on GitHub
  Random Powershell scripts
  ☆13Feb 13, 2024Updated 2 years ago
• rod-trent / AzureSentinelMisc

  View on GitHub
  Miscellaneous Azure Sentinel files that don't fall into other categories.
  ☆13Aug 23, 2021Updated 4 years ago
• AttacktheSOC / Azure-SecOps

  View on GitHub
  Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)
  ☆81Apr 12, 2026Updated last month
• AndrewBlumhardt / SentinelReconTools

  View on GitHub
  Sentinel Recon Tools Workbook
  ☆14Aug 24, 2022Updated 3 years ago
• rod-trent / Azure-Sentinel-Cost-Troubleshooting-Kit

  View on GitHub
  Guidance and collateral for troubleshooting and managing Azure Sentinel data costs.
  ☆28Oct 9, 2023Updated 2 years ago
• ugurkocde / KQL_Intune

  View on GitHub
  ☆92Jan 10, 2024Updated 2 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• LearningKijo / MDEtester

  View on GitHub
  MDE Tester is designed to help testing various features in Microsoft Defender for Endpoint.
  ☆195Feb 20, 2026Updated 3 months ago
• microsoft / Microsoft-365-Defender-Hunting-Queries

  View on GitHub
  Sample queries for Advanced hunting in Microsoft 365 Defender
  ☆2,065Feb 17, 2022Updated 4 years ago
• microsoft / msticpy-training

  View on GitHub
  Training and support materials for MSTICPy
  ☆18Jun 27, 2023Updated 2 years ago
• rod-trent / SentinelKQL

  View on GitHub
  Azure Sentinel KQL
  ☆477Jul 28, 2025Updated 9 months ago
• m4nbat / KustQueryLanguage_kql

  View on GitHub
  Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting
  ☆69Apr 1, 2026Updated last month
• msdirtbag / MicrosoftPurpleTeamToolkit

  View on GitHub
  ☆45Apr 10, 2024Updated 2 years ago
• rod-trent / MustLearnKQL

  View on GitHub
  Code included as part of the MustLearnKQL blog series
  ☆1,169Jan 30, 2026Updated 3 months ago