PuravsPoint / HowToGetStartedLinks
This repository provides insight on how to get started with Microsoft Security
☆11Updated 2 weeks ago
Alternatives and similar repositories for HowToGetStarted
Users that are interested in HowToGetStarted are comparing it to the libraries listed below
Sorting:
- Content and collateral for the Microsoft Sentinel SOC 101 series☆192Updated last year
- ☆96Updated last month
- Hands-on projects for beginners to learn and practice Active Directory monitoring using various tools.☆56Updated last year
- Unlock the power of Splunk SIEM for comprehensive log analysis. Collaborate and innovate with our Splunk Log Analysis Projects on GitHub☆213Updated last year
- KQL Queries for Advanced Hunting / Log Analytics☆13Updated last year
- This is a public repository to help those trying to learn Azure content and certifications to better understand the concepts and have a c�…☆31Updated last year
- Open Source Security Operations Center Documentation☆192Updated 2 months ago
- The collateral repository for The KQL Mysteries series☆25Updated last year
- Security Scripts and Sources for daily usage.☆65Updated 2 months ago
- KQL Sentinel and Defender Detection and Hunting Queries.☆13Updated last week
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆411Updated 2 weeks ago
- This repo aims to help you decipher the UAL from a Digital Forensics & Incident Response (DFIR) perspective. The UAL is the Microsoft 365…☆61Updated last year
- Beginner-friendly web penetration testing projects for hands-on learning.☆29Updated last year
- Hands-on projects on Static and Dynamic malware analysis with real-world tools.☆52Updated last year
- Hands-on cybersecurity projects to enhance skills in phishing investigation, malware analysis, network intrusion detection, and DDoS atta…☆210Updated last year
- Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.☆483Updated 9 months ago
- Content Repo for Demystifying KQL Tutorial Series��☆70Updated 11 months ago
- Ian Hanley's deceptively simple KQL queries.☆53Updated last week
- ☆184Updated last year
- A series of cloud focused KQL queries for threat hunting and DFIR☆10Updated 3 months ago
- A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…☆721Updated 3 weeks ago
- Hands-on cybersecurity training projects for beginners, focusing on vulnerability management, incident response, and log analysis☆70Updated last year
- ☆47Updated 2 years ago
- In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…☆128Updated last week
- Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.☆122Updated this week
- A powerful home-lab focused on setting up Splunk SIEM and real-world use cases. If you’re interested to become SOC Analyst(Tier 1/2) , th…☆76Updated last year
- Repository for SOC analysts, queries to investigate, advanced hunting, sites for analysis, malware samples, courses to improve skills, IO…☆64Updated 3 weeks ago
- A 30-day hands-on SOC Analyst project simulating real-world cyber attacks using ELK Stack, Mythic C2, osTicket & Elastic Defend. Covers t…☆37Updated 2 months ago
- ☆53Updated 2 weeks ago
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆516Updated last month