Alternatives and similar repositories for siem

Users that are interested in siem are comparing it to the libraries listed below

• sreedharande / Microsoft-Sentinel-As-A-Code
  Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …
  ☆58Updated 3 years ago
• jsa2 / aad-auth-n-z
  ☆67Updated 3 years ago
• rod-trent / SentinelWorkbooks
  Workbooks for Azure Sentinel
  ☆62Updated 2 years ago
• javiersoriano / sentinel-all-in-one
  ☆59Updated 2 years ago
• pkhabazi / sentineldevops
  Deploying and Managing Azure Sentinel – Ninja style
  ☆32Updated 5 years ago
• clivewatson / KQLpublic
  My useful KQL and Azure Monitor workbooks (Public)
  ☆117Updated 2 weeks ago
• Kaidja / AzSentinelPowerShell
  Azure Sentinel PowerShell cmdlets
  ☆20Updated 3 years ago
• JulianHayward / AzADServicePrincipalInsights
  Insights and change tracking on Microsoft Entra ID Service Principals (Enterprise Applications, Applications and Managed Identities)
  ☆243Updated 7 months ago
• rudneir2 / Microsoft-Cloud-Security-map
  putting all together: customer environment, some threats, azure security services, Microsoft 365 Defender services, Azure monitor service…
  ☆16Updated 3 years ago
• Cloud-Architekt / AzurePrivilegedIAM
  Docs and samples for privileged identity and access management in Microsoft Azure and Microsoft Entra.
  ☆181Updated 2 weeks ago
• globalbao / awesome-kql
  Collection of awesome KQL queries for use in Portal and via PowerShell - by @JesseLoudon
  ☆95Updated 8 months ago
• dmrellan / Visual-Auditing-Security-Workbook-with-Microsoft-Sentinel
  ☆34Updated last month
• TheCloudScout / sentinel-pricing
  ☆34Updated 2 years ago
• microsoft / AzureADToolkit
  PowerShell module to manage Azure Active Directory app credentials.
  ☆121Updated last year
• seanstark / sentinel-tools
  various tools for Microsoft Sentinel
  ☆32Updated 6 months ago
• Cloud-Architekt / EntraOps
  Community project to classify, identify and protect your privileges based on Enterprise Access Model (EAM)
  ☆193Updated this week
• msdirtbag / AzurePolicyAutomator
  ☆35Updated last year
• seyed-nouraie / Azure-Security-Data-Lake
  A platform for extracting and shipping security value from your data lake to Sentinel.
  ☆35Updated last year
• Cloud-Architekt / meetups
  All slides from my meetup talks
  ☆36Updated 6 months ago
• SecureHats / Sentinel-playground
  Solution to deploy a Sentinel playground demo environment
  ☆57Updated 2 years ago
• jsa2 / AADAppAudit
  Microsoft Entra ID App Audit Solution (AADAppAudit)
  ☆84Updated last year
• javiersoriano / sentinelascode
  Enable the automatic deployment of Azure Sentinel using code
  ☆117Updated 3 years ago
• f-bader / SentinelPesterFramework
  Check you Sentinel environment using Pester infrastructure tests
  ☆31Updated 2 years ago
• rod-trent / SentinelPlaybooks
  ☆59Updated last year
• msandbu / azuread
  ☆200Updated last year
• azsec / azure-sentinel-tools
  A collection of scripts and works related to Azure Sentinel
  ☆41Updated 3 years ago
• dcaddick / gsd_public
  ☆48Updated last month
• microsoft / mde-api-gui
  Simple GUI for Microsoft Defender for Endpoint API machine actions in PowerShell.
  ☆39Updated 2 years ago
• Azure / MDEASM-Solutions
  Solutions developed by the MDEASM Customer Experience Engineering (CxE) Go-To Production (GTP) team for Azure MDEASM
  ☆29Updated 10 months ago
• msdirtbag / MDE-Quickstart
  MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore
  ☆65Updated 3 years ago