☆22Aug 29, 2023Updated 2 years ago
Alternatives and similar repositories for m365defender-adx
Users that are interested in m365defender-adx are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆39Oct 30, 2024Updated last year
- KQLIntel is a browser-based tool that uses LLMs to convert threat intelligence reports into actionable Kusto Query Language (KQL) queries…☆30Aug 4, 2025Updated 9 months ago
- Azure AiTM Function PoC to phish Entra ID Credentials☆28Nov 21, 2025Updated 5 months ago
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆17Mar 13, 2026Updated last month
- sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…☆20May 20, 2025Updated 11 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Velociraptor Server hosted in Azure App Service☆58Jun 4, 2025Updated 11 months ago
- ☆11Mar 29, 2022Updated 4 years ago
- This is for my crappy (but hopefully useful) MDE and Sentinel KQL queries! #KQLThePlanet☆13Jan 24, 2026Updated 3 months ago
- This Module Helps to Scan a Commit History of a Repo for Leakage of Secrets☆15Apr 26, 2025Updated last year
- Sentinel Threat Intelligence Upload Toolkit☆18Jul 15, 2024Updated last year
- ☆44Oct 11, 2023Updated 2 years ago
- ResearchDev - XDR & SIEM Detection☆67Apr 16, 2025Updated last year
- Running your Azure DevOps self-hosted agent in a Azure Container Instance. Contains serveral dockerfile examples for Windows and Linux co…☆14Nov 28, 2019Updated 6 years ago
- KQL for Azure Resource Manager and AppID search☆23Aug 15, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Generate test data that is not only realistic but also contextually meaningful☆28Jun 30, 2023Updated 2 years ago
- Sentinel Analytics Rule converter PowerShell module☆68Feb 24, 2026Updated 2 months ago
- Enable the automatic deployment of Azure Sentinel using code☆118May 3, 2022Updated 4 years ago
- Hunting Queries for Defender ATP☆83Apr 1, 2026Updated last month
- Tool to enumerate unregistered reply URLs for single and multitenant apps in Azure☆15Jan 23, 2025Updated last year
- KQL queries for cyber defense and for solving daily issues☆55Jul 28, 2025Updated 9 months ago
- ☆19Dec 18, 2024Updated last year
- Contains research.splunk.com site code☆11Apr 10, 2024Updated 2 years ago
- Solution to deploy a Sentinel playground demo environment☆58Jun 9, 2023Updated 2 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Repository to publish sample use cases, templates, solutions, automations for Microsoft Defender Threat Intelligence (MDTI) product☆81Sep 9, 2024Updated last year
- PowerShell module to help getting tokens using managed identities☆17Dec 29, 2024Updated last year
- SSL certificate authority script package for creating and signing your own SSL/TLS certificates☆11Nov 28, 2025Updated 5 months ago
- PowerShell module that intearacts with the VirusTotal service using a VirusTotal API (free)☆82Feb 14, 2026Updated 2 months ago
- Extensible Azure Security Tool - Documentation☆83Jun 1, 2023Updated 2 years ago
- urlyzer is a URL parsing analysis tool.☆24Jul 27, 2024Updated last year
- ☆45Apr 10, 2024Updated 2 years ago
- Powershell scripts meant to assist administrators of Exchange Online☆16Jan 15, 2026Updated 3 months ago
- Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting☆69Apr 1, 2026Updated last month
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- MISP to Sentinel integration☆80Apr 21, 2026Updated 2 weeks ago
- collection template ref implementation☆11Mar 13, 2025Updated last year
- A simple fuzzy matching set for python strings☆10Nov 25, 2024Updated last year
- An Event Tracing for Windows (ETW) EventSource generator built on .Net Core 2.0☆11Dec 8, 2022Updated 3 years ago
- Hollowise is a tool that implements process hollowing and PPID (Parent Process ID) spoofing techniques for masking a legitimate analysis …☆39Feb 20, 2025Updated last year
- In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…☆139Apr 24, 2026Updated 2 weeks ago
- A WDAC configuration repository with the sole intention of enriching MDE☆30Jun 18, 2025Updated 10 months ago