NerbalOne/SentinelOne-Queries external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

NerbalOne/SentinelOne-Queries

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/NerbalOne/SentinelOne-Queries)

Close

NerbalOne / SentinelOne-QueriesView on GitHubMore

• External links
• Readme badge

This will be a repository of SentinelOne Deep Visibility queries both the Standard Queries and the Power Queries. Most of these queries will be for Windows.

☆35Oct 15, 2024Updated last year

Alternatives and similar repositories for SentinelOne-Queries

Users that are interested in SentinelOne-Queries are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• keyboardcrunch / sentinelone-queries

  View on GitHub
  Repository of SentinelOne Deep Visibility queries.
  ☆134Jun 30, 2021Updated 4 years ago
• keyboardcrunch / SentinelOne-ATTACK-Queries

  View on GitHub
  MITRE ATT&CK mapped queries for SentinelOne Deep Visiblity
  ☆94Jan 11, 2021Updated 5 years ago
• acquiredsecurity / SentinelOne-ThreatHunting-and-XDR-Guide

  View on GitHub
  Beginners Guide to Hunting for Threats
  ☆19Apr 26, 2025Updated 11 months ago
• davidhowell-tx / PS-SentinelOne

  View on GitHub
  PowerShell module for SentinelOne API
  ☆70Jun 26, 2023Updated 2 years ago
• dakhama-mehdi / Scan-broken-owner

  View on GitHub
  ☆11Jan 28, 2025Updated last year
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• SentineLabs / log4j_response

  View on GitHub
  ☆15Dec 22, 2021Updated 4 years ago
• Celerium / SentinelOne-PowerShellWrapper

  View on GitHub
  PowerShell wrapper for the SentinelOne API
  ☆10Jan 4, 2025Updated last year
• zjorz / Public-Windows-Scripts

  View on GitHub
  Windows Scripts
  ☆12Apr 2, 2020Updated 6 years ago
• openrelik / openrelik-deploy

  View on GitHub
  Tools and scripts to deploy and manage OpenRelik instances
  ☆16Mar 23, 2026Updated 2 weeks ago
• joelparkerhenderson / critical-success-factor

  View on GitHub
  Critical Success Factor (CSF) tutorial
  ☆19Apr 14, 2025Updated 11 months ago
• huntresslabs / free-tools

  View on GitHub
  ☆13Feb 10, 2021Updated 5 years ago
• eremit4 / Akamaru

  View on GitHub
  Sniffing out well-known threat groups
  ☆64Aug 13, 2024Updated last year
• joshuabennett-com / PSHuntress

  View on GitHub
  Huntress API
  ☆11May 26, 2022Updated 3 years ago
• nolannash / dcu-scripting

  View on GitHub
  Scripting Package for the automation of Dell Command | Update
  ☆21Sep 10, 2024Updated last year
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• keyboardcrunch / SentinelOne-Query-Navigator

  View on GitHub
  Web based S1 query navigator for one-click threat hunting
  ☆26Dec 18, 2020Updated 5 years ago
• threat-hunting / awesome-threat-detection

  View on GitHub
  A curated list of awesome threat detection and hunting resources
  ☆16Sep 12, 2018Updated 7 years ago
• betagouv / anssi-nis2

  View on GitHub
  Accompagner les organisations dans la compréhension et la mise en conformité à NIS 2
  ☆20Apr 2, 2026Updated last week
• Sentinel-One / purple-mcp

  View on GitHub
  Access SentinelOne's Purple AI and security services through the Model Context Protocol (MCP) - query alerts, vulnerabilities, misconfigu…
  ☆71Mar 30, 2026Updated last week
• ACE-Responder / ace-proctree

  View on GitHub
  Create a cool process tree like https://twitter.com/ACEResponder.
  ☆35Mar 1, 2023Updated 3 years ago
• corelight / Elasticsearch_rules

  View on GitHub
  Elastic version of SOC prime watcher rules
  ☆30Oct 14, 2024Updated last year
• LooseDevGoose / TurboADC

  View on GitHub
  Goose IT's Turbo Netscaler
  ☆17Jul 11, 2024Updated last year
• jmagar / unraid-mcp

  View on GitHub
  Query, monitor, and manage Unraid servers via GraphQL API through MCP tools. Supports system info, Docker, VMs, array/parity, notificatio…
  ☆55Updated this week
• endgameinc / noteclass

  View on GitHub
  ☆13Aug 11, 2018Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• 0xMuhannad / ThreatScanner

  View on GitHub
  multi-threaded script uses VirusTotal and AbuseIPDB APIs and generate an excel with all needed data
  ☆10Mar 14, 2023Updated 3 years ago
• ExabeamLabs / Content-Library-CIM2

  View on GitHub
  ☆29Mar 16, 2026Updated 3 weeks ago
• SparkyzCodez / FSRM-Anti-ransomware

  View on GitHub
  A suite of PowerShell and Python scripts to help you fight ransomware using both known filespecs and zero-day resistant honey traps.
  ☆26Dec 19, 2024Updated last year
• somethingTacos / ChromeManagedBookMarksEditor

  View on GitHub
  A program to edit the Chrome ManagedBookmarks JSON code for use in Group Policy.
  ☆29Dec 28, 2022Updated 3 years ago
• raghavendar-ts / ElasticTab-Elasticsearch-to-Excel-Report

  View on GitHub
  Web application to download and schedule reports from Elasticsearch
  ☆11May 12, 2017Updated 8 years ago
• daniellowrie / sweeper

  View on GitHub
  Host Discovery Tool
  ☆10Jan 17, 2022Updated 4 years ago
• shellcromancer / DaysOfYARA-2023

  View on GitHub
  Rules Shared by the Community from 100 Days of YARA 2023 -
  ☆18Apr 10, 2023Updated 3 years ago
• kidcrash22 / Sysmon-Threat-Intel

  View on GitHub
  ☆13Feb 6, 2018Updated 8 years ago
• 0xjxd / SquirrelWaffle-From-Maldoc-to-Cobalt-Strike

  View on GitHub
  ☆11Oct 3, 2021Updated 4 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• dannyroemhild / ransomware-fileext-list

  View on GitHub
  List with File Extensions used by Ransomware
  ☆37Apr 2, 2026Updated last week
• OneLogicalMyth / toolkit

  View on GitHub
  Collection of scripts and tools that I created to aid in my testing.
  ☆14Mar 2, 2022Updated 4 years ago
• swisscom / PowerGRR

  View on GitHub
  PowerGRR is an API client library in PowerShell working on Windows, Linux and macOS for GRR automation and scripting.
  ☆58Mar 18, 2022Updated 4 years ago
• alicangnll / SandAnalyze

  View on GitHub
  Simulate Windows EXE for Malware Research!
  ☆19Sep 4, 2024Updated last year
• Nclose-ZA / elastalert_hive_alerter

  View on GitHub
  This package allows the use of a custom Elastalert Alert which creates alerts with observables in TheHive using TheHive4Py.
  ☆26May 18, 2021Updated 4 years ago
• nimrodpar / Obfvious

  View on GitHub
  ☆20Feb 22, 2021Updated 5 years ago
• jasonjas / powershell

  View on GitHub
  Powershell Scripts
  ☆13Aug 26, 2024Updated last year