MicrosoftDocs / security

Public repo to sync with security-pr

☆222

Alternatives and similar repositories for security:

Users that are interested in security are comparing it to the libraries listed below

eshlomo1 / Microsoft-Sentinel-SecOps
Microsoft Sentinel SOC Operations
☆251Updated 8 months ago
briandelmsft / SentinelAutomationModules
The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
☆241Updated last week
rod-trent / OpenAISecurity
Scripts and Content for working with Open AI
☆159Updated 5 months ago
ashwin-patil / blue-teaming-with-kql
Repository with Sample KQL Query examples for Threat Hunting
☆208Updated 2 years ago
AzureAD / Azure-AD-Incident-Response-PowerShell-Module
The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…
☆432Updated last year
reprise99 / awesome-kql-sentinel
A curated list of blogs, videos, tutorials, queries and anything else valuable to help you learn and master KQL and Microsoft Sentinel
☆224Updated 2 years ago
wortell / KQL
KQL queries for Advanced Hunting
☆171Updated 5 years ago
microsoft / Microsoft-Cloud-App-Security
Additional Resources to improve Customer Experience with Microsoft Cloud App Security
☆145Updated 2 years ago
KQLMSPress / definitive-guide-kql
Sample queries and data as part of the Microsoft Press book, The Definitive Guide to KQL
☆241Updated 7 months ago
OTRF / Microsoft-Sentinel2Go
Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.
☆565Updated 2 months ago
rod-trent / SentinelKQL
Azure Sentinel KQL
☆434Updated 6 months ago
ep3p / Sentinel_KQL
In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…
☆116Updated last week
Cloud-Architekt / AzureSentinel
Sharing my KQL queries for Azure Sentinel
☆165Updated last week
DanielChronlund / DCSecurityOperations
A collection of Microsoft Sentinel workbooks and analytics rules.
☆105Updated last year
f-bader / AzSentinelQueries
Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.
☆105Updated last week
Azure / Azure-Sentinel-Notebooks
Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.
☆581Updated last month
rod-trent / Sentinel-SOC-101
Content and collateral for the Microsoft Sentinel SOC 101 series
☆173Updated last year
rod-trent / AddictedtoKQL
This is an advanced KQL blog series and book
☆112Updated 10 months ago
rod-trent / Security-Copilot
My personal work with Copilot for Security
☆184Updated this week
LearningKijo / KQL
Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
☆465Updated 4 months ago
alexverboon / Hunting-Queries-Detection-Rules
KQL Queries. Microsoft Defender, Microsoft Sentinel
☆142Updated last month
SecurityBagel / CMMC-Bagel
compliance assessment and POA&M management for CMMC/NIST 800-171A
☆86Updated 2 months ago
alexverboon / WindowsDefenderATP-Hunting-Queries
Sample queries for Advanced hunting in Microsoft Defender ATP
☆37Updated 3 years ago
alexverboon / MDATP
MDATP
☆459Updated 8 months ago
jangeisbauer / AdvancedHunting
Advanced Hunting Queries for Microsoft Security Products
☆106Updated 2 years ago
MicrosoftDocs / defender-docs
☆58Updated last week
guardsight / gsvsoc_cirt-playbook-battle-cards
Cyber Incident Response Team Playbook Battle Cards
☆373Updated 10 months ago
microsoft / MicrosoftDefenderForEndpoint-PowerBI
A repo for sample MDATP Power BI Templates
☆192Updated 3 years ago
microsoft / AzDetectSuite
A collection of ARM-based detections for Azure/AzureAD based TTPs
☆85Updated last year
microsoft / Microsoft-Defender-for-Identity
Additional resources to improve customer experience with Microsoft Defender for Identity
☆100Updated 5 months ago