Azure Sentinel, geniş ölçekte tehditleri tespit etmek, izlemek, analiz etmek ve önlem almak için kullanılır. Hem Azure hizmetlerinden gelen verileri hem de çeşitli üçüncü taraf sistemlerden ve cihazlardan gelen logları toplar ve analiz eder.
☆24Oct 21, 2024Updated last year
Alternatives and similar repositories for AzureSentinel
Users that are interested in AzureSentinel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Sigma Queries turned into KQL for Defender using pysigma☆12Mar 29, 2026Updated 2 months ago
- Microsoft Sentinel related content☆38Jan 22, 2025Updated last year
- Monitor/Archive of Azure IAM (Role Definitions and Provider Operations). Tweets at https://twitter.com/maiam_bot☆10Updated this week
- Network scanning tool designed to detect and report changes in open ports and services over time☆13Oct 16, 2025Updated 8 months ago
- A series of cloud focused KQL queries for threat hunting and DFIR☆12Oct 21, 2025Updated 7 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Native C++ access to Active Directory over ADWS, no .NET, no WCF, no HTTP stack.☆79Mar 27, 2026Updated 2 months ago
- The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…☆82Jun 9, 2026Updated last week
- Browser extension for launching multi-platform OSINT queries from grouped YAML profiles.☆10Apr 25, 2025Updated last year
- Collection of Microsoft Identity Threat Detection and Response resources.☆54Jun 1, 2026Updated 2 weeks ago
- Using MCP is fun with Cyberbro!☆19Apr 25, 2026Updated last month
- IOCs for various malware families☆11Jul 18, 2024Updated last year
- Ecosystem of Microsoft AI Services☆30Mar 11, 2024Updated 2 years ago
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆17Mar 13, 2026Updated 3 months ago
- Automatically updated lists of Tor Relays.☆18May 1, 2026Updated last month
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆13Jan 24, 2026Updated 4 months ago
- Sentinel BEC IR☆14Aug 18, 2022Updated 3 years ago
- Share Information about Microsoft Security Products☆102Jun 12, 2026Updated last week
- KQL Detections for Microsoft Sentinel and Microsoft 365 Defender☆22Nov 15, 2024Updated last year
- Repository with Hunting and Detection Queries for Microsoft Sentinel and Microsoft Defender XDR☆17Jun 9, 2026Updated last week
- Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)☆81Apr 12, 2026Updated 2 months ago
- Indicators of compromise☆19May 18, 2026Updated last month
- A repository to store community malware research notes and findings.☆16Feb 13, 2026Updated 4 months ago
- GitHub action for validating Microsoft Sentinel detection rules☆14May 22, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- OSINT Graph Investigation Application☆33Dec 11, 2025Updated 6 months ago
- 📜 Scrape targeted wordlists for password cracking using CSS selectors☆47Apr 7, 2026Updated 2 months ago
- CAPSlock is an offline Conditional Access (CA) analysis tool built on top of a roadrecon database. It helps defenders, auditors, and red …☆93May 16, 2026Updated last month
- KQL Queries for Advanced Hunting / Log Analytics☆13Jan 29, 2026Updated 4 months ago
- Per Country IP Lists based on the GeoLite2 Database☆18Apr 18, 2015Updated 11 years ago
- ☆18Jul 20, 2024Updated last year
- A Ligolo-ng JavaScript agent working inside Chrome & Chromium-based browsers by leveraging Isolated Web Applications.☆130Mar 30, 2026Updated 2 months ago
- Scan files for potential threats while leveraging AMSI (Antimalware Scan Interface) and Windows Defender. By isolating malicious content.☆40Jan 2, 2025Updated last year
- Utilities for Microsoft Sentinel☆20Dec 7, 2025Updated 6 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Attack surface discovery and AI-assisted triage for security researchers. Endpoint & parameter mapping with actionable testing hints.☆43Jan 12, 2026Updated 5 months ago
- Misc. content for Microsoft Sentinel☆17Apr 12, 2024Updated 2 years ago
- Rules I have researched for Microsoft Sentinel in my spare time. If someone wants to offer me a job I am open. Anyone can use this. Pleas…☆17Mar 29, 2026Updated 2 months ago
- Capture-Py is a malware analysis tool that makes a copy of any files deleted or modified in a given directory and sub-directories. It was…☆27Jun 28, 2017Updated 8 years ago
- A "supercharged" implementation of Claude Code Skills – using Haiku prompt analysis/critical skill scoring and skill auto-injection for f…☆41Updated this week
- KQL Queries☆42Jun 9, 2026Updated last week
- Programming Microsoft Sentinel book☆24Dec 13, 2023Updated 2 years ago