Beginners Guide to Hunting for Threats
☆18Apr 26, 2025Updated 10 months ago
Alternatives and similar repositories for SentinelOne-ThreatHunting-and-XDR-Guide
Users that are interested in SentinelOne-ThreatHunting-and-XDR-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SentinelOne STAR Rules☆75Feb 11, 2025Updated last year
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆16Mar 13, 2026Updated last week
- Personal scripts☆15Sep 11, 2024Updated last year
- Extract information from MISP via the API☆16Jul 18, 2016Updated 9 years ago
- This is a repository for reporting any issues in any of my software☆13May 15, 2018Updated 7 years ago
- Golang Library to interact with your MISP instance☆22Sep 12, 2019Updated 6 years ago
- VTC - Velociraptor Timeline Creator☆19May 15, 2024Updated last year
- Azure-Sentinel-BYOML☆12Nov 8, 2019Updated 6 years ago
- ☆17Nov 13, 2024Updated last year
- ☆18Jan 18, 2022Updated 4 years ago
- Super light, super fast, unlimited search idea☆25Aug 3, 2025Updated 7 months ago
- Azure OpenAI Playbook created for Microsoft Sentinel☆13May 2, 2024Updated last year
- Sentinel Recon Tools Workbook☆14Aug 24, 2022Updated 3 years ago
- ☆14Dec 2, 2020Updated 5 years ago
- This will be a repository of SentinelOne Deep Visibility queries both the Standard Queries and the Power Queries. Most of these queries w…☆33Oct 15, 2024Updated last year
- Bulk turn on Analytic rules in Azure Sentinel☆19Oct 7, 2021Updated 4 years ago
- Miscellaneous notebooks to use with Sentinel Hub☆20Aug 28, 2023Updated 2 years ago
- ☆15Feb 20, 2026Updated last month
- ☆11Mar 16, 2023Updated 3 years ago
- Built a mini HoneyNet in Azure and ingest log sources from various resources into a Log Analytics workspace☆24Jul 19, 2023Updated 2 years ago
- Integration tools for TheHive and Azure Sentinel☆13Sep 23, 2020Updated 5 years ago
- A collection of things I've created or found that I think is useful for Azure Sentinel.☆18Jan 28, 2026Updated last month
- ☆14Feb 22, 2021Updated 5 years ago
- putting all together: customer environment, some threats, azure security services, Microsoft 365 Defender services, Azure monitor service…☆17Apr 11, 2022Updated 3 years ago
- Azure Sentinel Template parser☆16Nov 2, 2020Updated 5 years ago
- Miscellaneous Azure Sentinel files that don't fall into other categories.☆13Aug 23, 2021Updated 4 years ago
- KQL Sentinel and Defender Detection and Hunting Queries.☆16Feb 24, 2026Updated last month
- Shell and Pen-testing Tool☆17May 14, 2025Updated 10 months ago
- PowerShell commands to export the Azure Sentinel Rule Templates to a CSV and to create the Rules from selected entries in the CSV file☆17Oct 31, 2024Updated last year
- Azure Function for the Microsoft Sentinel Triage AssistanT (STAT)☆15Mar 4, 2026Updated 3 weeks ago
- Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…☆30May 5, 2025Updated 10 months ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆15Aug 15, 2022Updated 3 years ago
- A walkthrough of creating and using the Azure environment and Microsoft Sentinel to track attacks and plot attacks on a live map.☆23Mar 26, 2023Updated 2 years ago
- Send High & New Incidents to The Hive incident management Platform☆18Feb 13, 2021Updated 5 years ago
- Misc. content for Microsoft Sentinel☆17Apr 12, 2024Updated last year
- Miscellaneous IDA scripts and projects☆15Apr 14, 2021Updated 4 years ago
- Tool for downloading the Greenbone Community Feed☆25Mar 16, 2026Updated last week
- Repository of SentinelOne Deep Visibility queries.☆136Jun 30, 2021Updated 4 years ago
- Threat Hunt Investigation Methodology and Procedure☆15Jul 11, 2022Updated 3 years ago