Beginners Guide to Hunting for Threats
☆20Apr 26, 2025Updated last year
Alternatives and similar repositories for SentinelOne-ThreatHunting-and-XDR-Guide
Users that are interested in SentinelOne-ThreatHunting-and-XDR-Guide are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SentinelOne STAR Rules☆76Feb 11, 2025Updated last year
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆17Mar 13, 2026Updated 3 months ago
- Automatically generated Sysmon parser for Azure Sentinel☆18Jan 6, 2026Updated 5 months ago
- A reddit bot that scans ODs over at /r/OpenDirectories and submits the results to the ODCrawler discovery server☆11Jan 22, 2023Updated 3 years ago
- Personal scripts☆15Sep 11, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Extract information from MISP via the API☆16Jul 18, 2016Updated 9 years ago
- This is a repository for reporting any issues in any of my software☆13May 15, 2018Updated 8 years ago
- The fabric-mcp-server is an MCP server that integrates Fabric patterns with AI coding agents and assistants, exposing them as tools for A…☆18Jul 28, 2025Updated 10 months ago
- Golang Library to interact with your MISP instance☆23Sep 12, 2019Updated 6 years ago
- VTC - Velociraptor Timeline Creator☆19May 15, 2024Updated 2 years ago
- Azure-Sentinel-BYOML☆14Nov 8, 2019Updated 6 years ago
- ☆17Nov 13, 2024Updated last year
- Super light, super fast, unlimited search idea☆25Aug 3, 2025Updated 10 months ago
- ☆18Jan 18, 2022Updated 4 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Azure OpenAI Playbook created for Microsoft Sentinel☆13May 2, 2024Updated 2 years ago
- Sentinel Recon Tools Workbook☆14Aug 24, 2022Updated 3 years ago
- Quickly generate suricata rules for IOCs☆28Apr 30, 2021Updated 5 years ago
- ☆14Dec 2, 2020Updated 5 years ago
- This will be a repository of SentinelOne Deep Visibility queries both the Standard Queries and the Power Queries. Most of these queries w…☆36Apr 29, 2026Updated last month
- Bulk turn on Analytic rules in Azure Sentinel☆18Oct 7, 2021Updated 4 years ago
- Miscellaneous notebooks to use with Sentinel Hub☆20Aug 28, 2023Updated 2 years ago
- ☆11Mar 16, 2023Updated 3 years ago
- ☆15May 11, 2026Updated last month
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Built a mini HoneyNet in Azure and ingest log sources from various resources into a Log Analytics workspace☆24Jul 19, 2023Updated 2 years ago
- Integration tools for TheHive and Azure Sentinel☆13Sep 23, 2020Updated 5 years ago
- A collection of things I've created or found that I think is useful for Azure Sentinel.☆18Jan 28, 2026Updated 4 months ago
- ☆14Feb 22, 2021Updated 5 years ago
- putting all together: customer environment, some threats, azure security services, Microsoft 365 Defender services, Azure monitor service…☆17Apr 11, 2022Updated 4 years ago
- Azure Sentinel Template parser☆16Nov 2, 2020Updated 5 years ago
- Miscellaneous Azure Sentinel files that don't fall into other categories.☆13Aug 23, 2021Updated 4 years ago
- KQL Sentinel and Defender Detection and Hunting Queries.☆16Updated this week
- Shell and Pen-testing Tool☆17May 14, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- PowerShell commands to export the Azure Sentinel Rule Templates to a CSV and to create the Rules from selected entries in the CSV file☆17Oct 31, 2024Updated last year
- Azure Function for the Microsoft Sentinel Triage AssistanT (STAT)☆16Apr 13, 2026Updated 2 months ago
- Plugins for parsing CSV files in Timeline Explorer. This project allows for anyone to add more supported files (i,e. they get a Line #/ta…☆33Jun 5, 2026Updated last week
- Various commands, tools, techniques that you can use to examine live Windows systems for signs of Compromise or for Threat Hunting.Can al…☆15May 30, 2026Updated 2 weeks ago
- Send High & New Incidents to The Hive incident management Platform☆18Feb 13, 2021Updated 5 years ago
- A walkthrough of creating and using the Azure environment and Microsoft Sentinel to track attacks and plot attacks on a live map.☆24Mar 26, 2023Updated 3 years ago
- Misc. content for Microsoft Sentinel☆17Apr 12, 2024Updated 2 years ago