Microsoft Defender Advanced Threat Protection
☆49Jan 28, 2026Updated last month
Alternatives and similar repositories for MDATP
Users that are interested in MDATP are comparing it to the libraries listed below
Sorting:
- Random Powershell scripts☆13Feb 13, 2024Updated 2 years ago
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆51Sep 22, 2025Updated 5 months ago
- Microsoft Defender ATP Manageability and Maintenance scripts☆29Jun 12, 2023Updated 2 years ago
- ☆21Jan 30, 2024Updated 2 years ago
- Additional resources to improve customer experience with Microsoft Defender for Identity☆121Sep 12, 2025Updated 5 months ago
- sample code to MicrosoftDefenderATP API☆27Apr 5, 2021Updated 4 years ago
- PowerShell Module for managing Microsoft Defender Advanced Threat Protection☆76Nov 10, 2022Updated 3 years ago
- This project contains samples how to use MDATP API for integration with other systems and products☆29Dec 22, 2019Updated 6 years ago
- M365 MDATP Live Response sample scripts☆82Nov 1, 2024Updated last year
- Windows Sandbox Explorer: a quick PowerShell way to modify the default Windows Sandbox☆15Sep 15, 2021Updated 4 years ago
- Transform EQL detection rules to VQL artifacts☆12Nov 12, 2021Updated 4 years ago
- ☆13May 30, 2025Updated 9 months ago
- ☆12Updated this week
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆119Aug 19, 2025Updated 6 months ago
- A modern approach to password rotation for the local administrator account on Windows 10 workstations utilizing Microsoft Endpoint Config…☆11May 5, 2020Updated 5 years ago
- Guidance and collateral for troubleshooting and managing Azure Sentinel data costs.☆28Oct 9, 2023Updated 2 years ago
- A WDAC configuration repository with the sole intention of enriching MDE☆30Jun 18, 2025Updated 8 months ago
- Solution to deploy a Sentinel playground demo environment☆58Jun 9, 2023Updated 2 years ago
- Scripts to manage "Auto Time Zone Updater" 'tzautoupdate' service on a Windows device. Intended to be used as "Remediations", in Microsof…☆14Jul 12, 2024Updated last year
- various tools for Microsoft Sentinel☆32Jun 26, 2025Updated 8 months ago
- ☆31Sep 4, 2023Updated 2 years ago
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆13Jan 24, 2026Updated last month
- ☆32Aug 3, 2022Updated 3 years ago
- LILO based Pulse Secure appliance disk image decryptor☆13Mar 20, 2024Updated last year
- GitHub action for validating Microsoft Sentinel detection rules☆14May 22, 2023Updated 2 years ago
- Miscellaneous Azure Sentinel files that don't fall into other categories.☆13Aug 23, 2021Updated 4 years ago
- KQL Queries for Advanced Hunting / Log Analytics☆13Jan 29, 2026Updated last month
- A list of PowerShell folks on Mastodon☆13Feb 27, 2023Updated 3 years ago
- Bulk turn on Analytic rules in Azure Sentinel☆19Oct 7, 2021Updated 4 years ago
- Microsoft Intune Custom Compliance☆42Mar 18, 2024Updated last year
- Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …☆59Sep 15, 2022Updated 3 years ago
- A PSAppDeployToolkit v4 extension module for WinGet.☆46Aug 7, 2025Updated 6 months ago
- ☆18Jun 4, 2025Updated 8 months ago
- ☆13Feb 10, 2022Updated 4 years ago
- ☆25May 29, 2025Updated 9 months ago
- Add custom properties to your Intune devices☆19Jul 26, 2024Updated last year
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆17Mar 10, 2023Updated 2 years ago
- Repository with supporting materials for Invictus Academy/Training☆44Jan 3, 2025Updated last year
- ☆18Feb 2, 2026Updated last month