CGCFAD/WDATP-Advanced-Hunting external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

CGCFAD/WDATP-Advanced-Hunting

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CGCFAD/WDATP-Advanced-Hunting)

Close

CGCFAD / WDATP-Advanced-HuntingView on GitHubMore

• External links
• Readme badge

Windows Defender ATP - Advanced Hunting Queries

☆22Apr 12, 2018Updated 7 years ago

Alternatives and similar repositories for WDATP-Advanced-Hunting

Users that are interested in WDATP-Advanced-Hunting are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• mandiant / pivy-report

  View on GitHub
  Poison Ivy Appendix/Extras
  ☆18Aug 21, 2013Updated 12 years ago
• CyberDefenses / CDI_yara

  View on GitHub
  A collection of YARA rules for public use. Built from information in intelligence profiles, dossiers and file work.
  ☆18Sep 10, 2023Updated 2 years ago
• chihebchebbi / Azure-Sentinel-Report-Generator

  View on GitHub
  ☆14Feb 22, 2021Updated 5 years ago
• jangeisbauer / AdvancedHunting

  View on GitHub
  Advanced Hunting Queries for Microsoft Security Products
  ☆108Jan 10, 2023Updated 3 years ago
• rod-trent / AzureSentinelMisc

  View on GitHub
  Miscellaneous Azure Sentinel files that don't fall into other categories.
  ☆13Aug 23, 2021Updated 4 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• swiftsolves-msft / PowerShell-Scripts

  View on GitHub
  PowerShell Scripts, Snippets, bare minmium ideas
  ☆15Feb 5, 2026Updated 2 months ago
• gmellini / Microsoft-Defender-Security-Center-Hunting-Queries

  View on GitHub
  Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…
  ☆40Apr 8, 2021Updated 5 years ago
• microsoft / Azure-Advanced-Threat-Protection

  View on GitHub
  Additional Resources to improve Customer Experience with Azure Advanced Threat Protection
  ☆22Jun 12, 2023Updated 2 years ago
• garybushey / AzSentinelAnalyticsRules

  View on GitHub
  PowerShell commands to export the Azure Sentinel Rule Templates to a CSV and to create the Rules from selected entries in the CSV file
  ☆17Oct 31, 2024Updated last year
• herbiezimmerman / Windows-Event-Logs-With-Event-IDs

  View on GitHub
  A running list of Windows sources and the related event ids.
  ☆19Aug 2, 2023Updated 2 years ago
• Neo23x0 / awesome-yara

  View on GitHub
  A curated list of awesome YARA rules, tools, and people.
  ☆33Oct 26, 2023Updated 2 years ago
• caschnee / misp-use-cases

  View on GitHub
  ☆14May 30, 2018Updated 7 years ago
• rod-trent / SentinelPlaybooks

  View on GitHub
  ☆59Jul 18, 2024Updated last year
• sevzero / honeybadger

  View on GitHub
  Javascript deobfuscation tool
  ☆17Apr 6, 2018Updated 8 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• rod-trent / JunkDrawer

  View on GitHub
  Miscellaneous stuff I create
  ☆65Apr 3, 2026Updated last week
• hire-vladimir / data_governance

  View on GitHub
  Data Governance app for Splunk
  ☆12Oct 19, 2023Updated 2 years ago
• rod-trent / SentinelPS

  View on GitHub
  ☆30Nov 11, 2024Updated last year
• ninfo-py / ninfo

  View on GitHub
  Plugin based information gathering library
  ☆28May 4, 2023Updated 2 years ago
• pthoor / KustoDetectiveAgencyHints-Season2

  View on GitHub
  Hints for the Kusto Detective Agency - Season 2
  ☆10Aug 15, 2023Updated 2 years ago
• PacktPublishing / Mastering-Microsoft-365-Defender

  View on GitHub
  Detecting and Responding to Threats using Microsoft 365 Defender, published by Packt
  ☆16Jul 10, 2023Updated 2 years ago
• f-bader / SentinelARConverter

  View on GitHub
  Sentinel Analytics Rule converter PowerShell module
  ☆67Feb 24, 2026Updated last month
• DanielBradley1 / QuickPIM

  View on GitHub
  ☆12Oct 29, 2025Updated 5 months ago
• doksu / TA-asngen

  View on GitHub
  ASN Lookup Generator for Splunk
  ☆10Jan 24, 2024Updated 2 years ago
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• splunk / atomic-red-team

  View on GitHub
  Small and highly portable detection tests based on MITRE's ATT&CK.
  ☆12Jun 24, 2021Updated 4 years ago
• microsoft / Microsoft-365-Defender-Hunting-Queries

  View on GitHub
  Sample queries for Advanced hunting in Microsoft 365 Defender
  ☆2,055Feb 17, 2022Updated 4 years ago
• P4T12ICK / ypsilon

  View on GitHub
  Automated Use Case Testing
  ☆171May 1, 2018Updated 7 years ago
• m4nbat / KustQueryLanguage_kql

  View on GitHub
  Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting
  ☆68Apr 1, 2026Updated last week
• fabriciojoc / malware-machinelearning

  View on GitHub
  Malware - Machine Learning
  ☆11Mar 24, 2018Updated 8 years ago
• doksu / setops

  View on GitHub
  Set Operations App for Splunk
  ☆10Mar 29, 2021Updated 5 years ago
• atc-project / atc-mitigation

  View on GitHub
  Actionable analytics designed to combat threats based on MITRE's ATT&CK.
  ☆23Aug 21, 2019Updated 6 years ago
• samikroy / ms-sentinel-scout

  View on GitHub
  ☆17Feb 25, 2026Updated last month
• NC3-LU / Diagnostic

  View on GitHub
  Security diagnostic quick start guide. Identifying the best measures and establishing specific security procedures for your organization.
  ☆11May 29, 2019Updated 6 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• InfoProtectionTeam / AIP-Deployment-Acceleration-Guide

  View on GitHub
  This repository is used to store the Azure Information Protection Deployment Acceleration Guide
  ☆29May 31, 2019Updated 6 years ago
• doksu / TA-jsontools

  View on GitHub
  JSON Tools Technology Add-On for Splunk
  ☆10Mar 31, 2021Updated 5 years ago
• MicrosoftDocs / azure-sphere-issues

  View on GitHub
  ☆11Nov 13, 2024Updated last year
• microsoft / microsoft-defender-for-endpoint-manageability

  View on GitHub
  Microsoft Defender ATP Manageability and Maintenance scripts
  ☆29Jun 12, 2023Updated 2 years ago
• rod-trent / OnPremSecMonitoring4Sentinel

  View on GitHub
  ☆18Jul 13, 2022Updated 3 years ago
• splunk / TA-osquery

  View on GitHub
  A Splunk technology add-on for osquery
  ☆14Sep 5, 2025Updated 7 months ago
• laymanstake / laymanstake

  View on GitHub
  👋 Hi, I’m Nitish Kumar @laymanstake. Working in Windows Infrastructure since almost two decades now. 👀 I’m interested in O365/ Azure/ S…
  ☆12Jan 3, 2025Updated last year