Alternatives and similar repositories for XDR_Queries:

Users that are interested in XDR_Queries are comparing it to the libraries listed below

• Truvis / Sentinel
  ☆27Updated 7 months ago
• JeffMichelmore / MDEKit
  ☆41Updated last year
• vradchenko / PowerShell-SentinelOne
  PowerShell module for SentinelOne API
  ☆28Updated 4 years ago
• Kaidja / EntraID
  Automation around Entra ID
  ☆35Updated 4 months ago
• ThomasVrhydn / MDE-troubleshooter
  This tool is designed to assist you in analyzing issues related to Defender for Endpoint on your local endpoint. It offers a centralized …
  ☆55Updated this week
• HybridBrothers / Hunting-Queries-Detection-Rules
  The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…
  ☆25Updated last week
• itpro-tips / ActiveDirectory-Toolbox
  ☆44Updated 2 weeks ago
• EvotecIT / PowerShellManager
  Little PowerShell module to extract PowerShell scripts that no longer exists on disk but were run and are still in Event Logs.
  ☆40Updated 4 years ago
• Trimarc / Invoke-TrimarcADChecks
  The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…
  ☆50Updated last year
• alexverboon / PSMDATP
  PowerShell Module for managing Microsoft Defender Advanced Threat Protection
  ☆71Updated 2 years ago
• davidhowell-tx / PS-SentinelOne
  PowerShell module for SentinelOne API
  ☆65Updated last year
• KnudsenMorten / ClientInspectorV2
  ClientInspectorV2 - Unleashing the power of Azure LogAnalytics, Azure Data Collection Rules, Log Ingestion API by doing client inventory …
  ☆25Updated last year
• Kaidja / Defender-for-Endpoint
  Defender for Endpoint
  ☆27Updated 8 months ago
• simon-r-watson / SophosCentral
  Sophos Central PowerShell module
  ☆10Updated last year
• nathanmcnulty / MMS2024FLL
  ☆21Updated last week
• jkerai1 / SoftwareCertificates
  Repository for Software Certs for easy software blocking across corp environments, for example, using MDE IOC
  ☆36Updated last week
• gkm-automation / AD-Security-Assessment
  Perform general security checks against AD environment
  ☆67Updated 3 years ago
• msdirtbag / MDE-Quickstart
  MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore
  ☆66Updated 2 years ago
• Fortigi / ServerHardening_DSC
  CIS & Azure Security Center Hardening recommendations implemented in PowerShell DSC from Azure Automation
  ☆33Updated 3 years ago
• alexverboon / SentinelTIUploadToolkit
  Sentinel Threat Intelligence Upload Toolkit
  ☆13Updated 8 months ago
• h0ffayyy / MicrosoftSentinelStuff
  Misc. content for Microsoft Sentinel
  ☆18Updated 11 months ago
• MotiBa / AppLocker
  AppLocker hardening policies
  ☆25Updated 6 years ago
• anthonws / MDATP_PoSh_Scripts
  ☆48Updated 8 months ago
• PaulHCode / RecurringADChecks
  ☆13Updated 3 years ago
• SalutAToi / AD-Tier-Administration
  Powershell scripts to implement a Tier administration model in Active Directory
  ☆28Updated 4 years ago
• SamErde / PowerShell
  PowerShell for Active Directory, Defender XDR, Entra ID, Exchange Server, Microsoft 365, Windows, and more! ✌️
  ☆73Updated this week
• rucam / defender-comparison
  ☆59Updated last year
• Corissalea / KQL-and-Workbooks
  Sharing presentation slides and workbook templates that can be useful to others to learn more about Azure Active Directory!
  ☆20Updated 7 months ago
• 0xAnalyst / DefenderATPQueries
  Hunting Queries for Defender ATP
  ☆81Updated 2 weeks ago
• thalpius / Microsoft-Defender-for-Identity-Log-Analyzer
  ☆18Updated 10 months ago