Defender Resource Hub
☆30Updated this week
Alternatives and similar repositories for DefenderResourceHub
Users that are interested in DefenderResourceHub are comparing it to the libraries listed below
Sorting:
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆16Feb 11, 2026Updated 2 weeks ago
- Repository with Hunting and Detection Queries for Microsoft Sentinel and Microsoft Defender XDR☆16Nov 7, 2025Updated 3 months ago
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆196Updated this week
- Queries from the blog posts.☆15Oct 6, 2024Updated last year
- FileSigExtractor is a python based tool which extracts the file signatures of all files within a directory and writes the output to a CSV…☆10Jul 15, 2023Updated 2 years ago
- GUI for regripper☆11Mar 19, 2019Updated 6 years ago
- A simple python script to generate nested folders based on user input. The script will also name and place a template report document and…☆11Jun 19, 2025Updated 8 months ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- sKaleQL is an opinionated template repository for managing, executing, and organizing Kusto Query Language (KQL) queries against Azure Lo…☆19May 20, 2025Updated 9 months ago
- /ˈhäjˌpäj/ "a confused mixture."☆13Feb 21, 2026Updated last week
- Fork this repo! Do a Pull Request! As many times as you want! Learn the ins and outs of how to contribute to GitHub! Make your mistakes h…☆14Jun 21, 2024Updated last year
- KQL Sentinel and Defender Detection and Hunting Queries.☆15Updated this week
- ☆12Feb 15, 2024Updated 2 years ago
- Power BI connector that provides insight into the current state of how Microsoft 365 is configured and whether best practices have been i…☆13Oct 2, 2020Updated 5 years ago
- A repository to store community malware research notes and findings.☆15Feb 13, 2026Updated 2 weeks ago
- Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.☆137Updated this week
- A C# (.NET 6) tool to compare the file signature of files recursively and inform the user of matches and mismatches☆16Nov 29, 2024Updated last year
- Automatic, fast parsing of browser artifacts☆17Jan 4, 2025Updated last year
- Ian Hanley's deceptively simple KQL queries.☆68Dec 27, 2025Updated 2 months ago
- Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)☆79Updated this week
- This is the offical Repository for the Access Package Builder Web App.☆18Jan 26, 2026Updated last month
- Just Another broken Registry Parser (JARP)☆16May 23, 2024Updated last year
- Forensic cheatsheets for use with cheat☆15Dec 2, 2021Updated 4 years ago
- A powerful macOS triage collection tool designed for forensic analysis. It gathers critical system artifacts such as FSEvents, Spotlight,…☆34Oct 24, 2025Updated 4 months ago
- StickyParser - Sticky Notes Forensic. A Windows Sticky Notes Praser (snt and plum.sqlite supported). Additional Feature: SQLite Recovery …☆20Jul 18, 2023Updated 2 years ago
- KQL Detections for Microsoft Sentinel and Microsoft 365 Defender☆21Nov 15, 2024Updated last year
- ☆14Feb 22, 2021Updated 5 years ago
- Windows Forensics Salt States☆21Feb 19, 2026Updated last week
- This repository will be publicly available☆22Jan 27, 2026Updated last month
- Sentinel Threat Intelligence Upload Toolkit☆18Jul 15, 2024Updated last year
- Windows digital forensics and incident response scripts☆14Oct 30, 2018Updated 7 years ago
- BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.☆43Nov 27, 2022Updated 3 years ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆277Dec 20, 2025Updated 2 months ago
- Git for me to put all my forensics stuff☆23Sep 2, 2025Updated 5 months ago
- Google Filestream Forensic Tool☆22Mar 10, 2022Updated 3 years ago
- Tweettioc Splunk App☆20Aug 25, 2020Updated 5 years ago
- ☆382Feb 14, 2026Updated 2 weeks ago
- In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (…☆134Dec 18, 2025Updated 2 months ago
- A tool for fetching DFIR and other GitHub tools.☆25Aug 2, 2025Updated 6 months ago