Intellisec-Solutions/Sentinel2D3FEND external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Intellisec-Solutions/Sentinel2D3FEND

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Intellisec-Solutions/Sentinel2D3FEND)

Close

Intellisec-Solutions / Sentinel2D3FENDView on GitHubMore

• External links
• Readme badge

This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defenses

☆74Jun 28, 2021Updated 4 years ago

Alternatives and similar repositories for Sentinel2D3FEND

Users that are interested in Sentinel2D3FEND are comparing it to the libraries listed below

• Intellisec-Solutions / Microsoft-Sentinel-SIGMA-Rules-Workbook

  View on GitHub
  ☆12Jul 15, 2022Updated 3 years ago
• mikoiv / MicrosoftSentinel-ShodanMonitor

  View on GitHub
  Ingesting Shodan Monitor Alerts to Microsoft Sentinel
  ☆33Sep 19, 2023Updated 2 years ago
• inhashed / thehive-sentinel-integration

  View on GitHub
  Integration tools for TheHive and Azure Sentinel
  ☆13Sep 23, 2020Updated 5 years ago
• chihebchebbi / Azure-Sentinel-Report-Generator

  View on GitHub
  ☆14Feb 22, 2021Updated 5 years ago
• rcegan / ConvertSigmaRepo2KQL

  View on GitHub
  A small crappy script I wrote that converts the Sigma Windows Process Creation events to KQL via PySigma. Designed for CI/CD
  ☆10Nov 7, 2023Updated 2 years ago
• ninaddoshi / Azure-Security-and-Governance-Aides

  View on GitHub
  A collection of assets I created to help improve security and governance operations for Azure environments
  ☆10Apr 7, 2021Updated 4 years ago
• garybushey / AzSentinelAnalyticsRules

  View on GitHub
  PowerShell commands to export the Azure Sentinel Rule Templates to a CSV and to create the Rules from selected entries in the CSV file
  ☆17Oct 31, 2024Updated last year
• rod-trent / OnPremSecMonitoring4Sentinel

  View on GitHub
  ☆18Jul 13, 2022Updated 3 years ago
• briandelmsft / STAT-Function

  View on GitHub
  Azure Function for the Microsoft Sentinel Triage AssistanT (STAT)
  ☆15Mar 4, 2026Updated 2 weeks ago
• tsale / Threat-Intelligence-Playbooks

  View on GitHub
  High-level Threat Intelligence playbooks
  ☆20Mar 6, 2021Updated 5 years ago
• f-bader / SentinelARConverter

  View on GitHub
  Sentinel Analytics Rule converter PowerShell module
  ☆67Feb 24, 2026Updated 3 weeks ago
• ml58158 / AzureOpenAI-Playbook

  View on GitHub
  Azure OpenAI Playbook created for Microsoft Sentinel
  ☆13May 2, 2024Updated last year
• rudneir2 / Microsoft-Cloud-Security-map

  View on GitHub
  putting all together: customer environment, some threats, azure security services, Microsoft 365 Defender services, Azure monitor service…
  ☆17Apr 11, 2022Updated 3 years ago
• rod-trent / SentinelWorkbooks

  View on GitHub
  Workbooks for Azure Sentinel
  ☆63Aug 14, 2023Updated 2 years ago
• chihebchebbi / Sentinel2Attack

  View on GitHub
  ☆14Mar 5, 2021Updated 5 years ago
• msdirtbag / MicrosoftPurpleTeamToolkit

  View on GitHub
  ☆45Apr 10, 2024Updated last year
• chihebchebbi / Azure-Sentinel-Hive-Playbook

  View on GitHub
  Send High & New Incidents to The Hive incident management Platform
  ☆18Feb 13, 2021Updated 5 years ago
• rod-trent / AzureSentinelMisc

  View on GitHub
  Miscellaneous Azure Sentinel files that don't fall into other categories.
  ☆13Aug 23, 2021Updated 4 years ago
• dwmetz / PSHero

  View on GitHub
  PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.
  ☆37Jul 11, 2023Updated 2 years ago
• AndrewBlumhardt / SentinelReconTools

  View on GitHub
  Sentinel Recon Tools Workbook
  ☆14Aug 24, 2022Updated 3 years ago
• seanstark / sentinel-tools

  View on GitHub
  various tools for Microsoft Sentinel
  ☆32Jun 26, 2025Updated 8 months ago
• oloruntolaallbert / MS-Attack-Range

  View on GitHub
  An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…
  ☆63Jul 27, 2025Updated 7 months ago
• soc-otter / Blue

  View on GitHub
  A collection of content for blue team professionals, designed to support both reactive and proactive cybersecurity measures of every aspe…
  ☆33Oct 24, 2025Updated 4 months ago
• Bert-JanP / Sentinel-Automation

  View on GitHub
  Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.
  ☆116Jan 18, 2026Updated 2 months ago
• tesorion / TCERT-Cumulonimbus-UAL_Extractor

  View on GitHub
  Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…
  ☆21Oct 25, 2023Updated 2 years ago
• markolauren / sentinel

  View on GitHub
  ☆67Mar 9, 2026Updated last week
• TheCloudScout / sentinel-pricing

  View on GitHub
  ☆34May 30, 2023Updated 2 years ago
• cudeso / misp2sentinel

  View on GitHub
  MISP to Sentinel integration
  ☆79Feb 6, 2026Updated last month
• javiersoriano / sentinel-training

  View on GitHub
  ☆39Sep 29, 2021Updated 4 years ago
• tvfischer / ps-srum-hunting

  View on GitHub
  PowerShell Script to facilitate the processing of SRUM data for on-the-fly forensics and if needed threat hunting
  ☆23Oct 26, 2019Updated 6 years ago
• austinsonger / Elastic-Security

  View on GitHub
  Repo for Automations and other solutions for Elastic SIEM/Security.
  ☆18Jun 15, 2021Updated 4 years ago
• bluemountaincyber / evidence-app

  View on GitHub
  Serverless AWS application to upload and hash evidence files.
  ☆23Oct 26, 2022Updated 3 years ago
• briandelmsft / SentinelAutomationModules

  View on GitHub
  The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
  ☆277Jan 2, 2026Updated 2 months ago
• ninoseki / iocingestor

  View on GitHub
  An extendable tool to extract and aggregate IoCs from threat feeds
  ☆33Feb 6, 2024Updated 2 years ago
• splunk / attack-detections-collector

  View on GitHub
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆69Mar 17, 2024Updated 2 years ago
• edoardogerosa / sentinel-attack

  View on GitHub
  Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
  ☆1,080Nov 28, 2024Updated last year
• Bert-JanP / Hunting-Queries-Detection-Rules

  View on GitHub
  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…
  ☆1,661Mar 9, 2026Updated last week
• swisscom / Invoke-Forensics

  View on GitHub
  Invoke-Forensics provides PowerShell commands to simplify working with the forensic tools KAPE and RegRipper.
  ☆118Nov 28, 2023Updated 2 years ago
• zeflow / Sigma2SplunkAlert

  View on GitHub
  Converts Sigma detection rules to a Splunk alert configuration.
  ☆12Jul 1, 2021Updated 4 years ago