Beginners Guide to Hunting for Threats
☆21Apr 26, 2025Updated last year
Alternatives and similar repositories for SentinelOne-ThreatHunting-and-XDR-Guide
Users that are interested in SentinelOne-ThreatHunting-and-XDR-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SentinelOne STAR Rules☆77Feb 11, 2025Updated last year
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆17Mar 13, 2026Updated 3 months ago
- Automatically generated Sysmon parser for Azure Sentinel☆18Jan 6, 2026Updated 5 months ago
- A reddit bot that scans ODs over at /r/OpenDirectories and submits the results to the ODCrawler discovery server☆12Jan 22, 2023Updated 3 years ago
- Personal scripts☆15Sep 11, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Extract information from MISP via the API☆16Jul 18, 2016Updated 9 years ago
- This is a repository for reporting any issues in any of my software☆13May 15, 2018Updated 8 years ago
- The fabric-mcp-server is an MCP server that integrates Fabric patterns with AI coding agents and assistants, exposing them as tools for A…☆18Jul 28, 2025Updated 11 months ago
- Golang Library to interact with your MISP instance☆23Sep 12, 2019Updated 6 years ago
- VTC - Velociraptor Timeline Creator☆19May 15, 2024Updated 2 years ago
- Azure-Sentinel-BYOML☆14Nov 8, 2019Updated 6 years ago
- ☆18Nov 13, 2024Updated last year
- Super light, super fast, unlimited search idea☆25Aug 3, 2025Updated 11 months ago
- ☆18Jan 18, 2022Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Azure OpenAI Playbook created for Microsoft Sentinel☆14May 2, 2024Updated 2 years ago
- Sentinel Recon Tools Workbook☆14Aug 24, 2022Updated 3 years ago
- Quickly generate suricata rules for IOCs☆28Apr 30, 2021Updated 5 years ago
- ☆14Dec 2, 2020Updated 5 years ago
- This will be a repository of SentinelOne Deep Visibility queries both the Standard Queries and the Power Queries. Most of these queries w…☆36Apr 29, 2026Updated 2 months ago
- Bulk turn on Analytic rules in Azure Sentinel☆18Oct 7, 2021Updated 4 years ago
- ☆11Mar 16, 2023Updated 3 years ago
- Miscellaneous notebooks to use with Sentinel Hub☆20Aug 28, 2023Updated 2 years ago
- ☆15May 11, 2026Updated last month
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Built a mini HoneyNet in Azure and ingest log sources from various resources into a Log Analytics workspace☆24Jul 19, 2023Updated 2 years ago
- Integration tools for TheHive and Azure Sentinel☆13Sep 23, 2020Updated 5 years ago
- A collection of things I've created or found that I think is useful for Azure Sentinel.☆18Jun 24, 2026Updated last week
- ☆14Feb 22, 2021Updated 5 years ago
- putting all together: customer environment, some threats, azure security services, Microsoft 365 Defender services, Azure monitor service…☆18Apr 11, 2022Updated 4 years ago
- Azure Sentinel Template parser☆16Nov 2, 2020Updated 5 years ago
- Miscellaneous Azure Sentinel files that don't fall into other categories.☆13Aug 23, 2021Updated 4 years ago
- KQL Sentinel and Defender Detection and Hunting Queries.☆16Jun 22, 2026Updated last week
- Shell and Pen-testing Tool☆17May 14, 2025Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- PowerShell commands to export the Azure Sentinel Rule Templates to a CSV and to create the Rules from selected entries in the CSV file☆17Oct 31, 2024Updated last year
- Azure Function for the Microsoft Sentinel Triage AssistanT (STAT)☆16Apr 13, 2026Updated 2 months ago
- Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…☆33Jun 5, 2026Updated 3 weeks ago
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆15May 30, 2026Updated last month
- Send High & New Incidents to The Hive incident management Platform☆18Feb 13, 2021Updated 5 years ago
- A walkthrough of creating and using the Azure environment and Microsoft Sentinel to track attacks and plot attacks on a live map.☆25Mar 26, 2023Updated 3 years ago
- Misc. content for Microsoft Sentinel☆17Apr 12, 2024Updated 2 years ago