JonCyberGuy / SIEM-HomeLabLinks
A walkthrough of creating and using the Azure environment and Microsoft Sentinel to track attacks and plot attacks on a live map.
☆17Updated 2 years ago
Alternatives and similar repositories for SIEM-HomeLab
Users that are interested in SIEM-HomeLab are comparing it to the libraries listed below
Sorting:
- Automation around Entra ID☆36Updated 6 months ago
- Solution to deploy a Sentinel playground demo environment☆56Updated last year
- ☆30Updated last year
- Links and guidance related to the return on mitigation report in the Microsoft Digital Defense Report☆28Updated last year
- Extensible Azure Security Tool - Documentation☆82Updated 2 years ago
- ☆57Updated 10 months ago
- Azure AD Incident Response☆25Updated 3 years ago
- ☆20Updated last year
- Defender Resource Hub☆25Updated 2 weeks ago
- Microsoft Sentinel related content☆37Updated 4 months ago
- KQL for Azure Resource Manager and AppID search☆23Updated 9 months ago
- Microsoft Entra ID App Audit Solution (AADAppAudit)☆82Updated 9 months ago
- A list of Entra ID (Azure AD) Audit event names and the corresponding Microsoft Graph Request Uri☆28Updated 8 months ago
- ☆41Updated last year
- ☆15Updated 4 years ago
- Azure AD Security controls check.☆14Updated 2 years ago
- Check you Sentinel environment using Pester infrastructure tests☆29Updated last year
- CIS & Azure Security Center Hardening recommendations implemented in PowerShell DSC from Azure Automation☆34Updated 3 years ago
- MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore☆66Updated 2 years ago
- M365 Defender SOC Playbooks☆24Updated 2 years ago
- Conditional Access Reporting☆27Updated 2 months ago
- ☆9Updated 3 years ago
- This GitHub repository contains lessons for developing Microsoft Security CoPilot plugins☆18Updated last year
- Sentinel Recon Tools Workbook☆13Updated 2 years ago
- Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're d…☆27Updated 3 weeks ago
- ☆35Updated 2 weeks ago
- A WDAC configuration repository with the sole intention of enriching MDE☆28Updated 2 years ago
- A series of PowerShell scripts to automate the assessment of Azure IaaS security☆18Updated 7 months ago
- MS Entra ID Protection Guidance☆20Updated last year
- Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)☆68Updated last month