dmrellan/Visual-Auditing-Security-Workbook-with-Microsoft-Sentinel external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

dmrellan/Visual-Auditing-Security-Workbook-with-Microsoft-Sentinel

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/dmrellan/Visual-Auditing-Security-Workbook-with-Microsoft-Sentinel)

Close

dmrellan / Visual-Auditing-Security-Workbook-with-Microsoft-SentinelView on GitHubMore

• External links
• Readme badge

☆34Nov 11, 2025Updated 3 months ago

Alternatives and similar repositories for Visual-Auditing-Security-Workbook-with-Microsoft-Sentinel

Users that are interested in Visual-Auditing-Security-Workbook-with-Microsoft-Sentinel are comparing it to the libraries listed below

• PacktPublishing / Mastering-Microsoft-365-Defender

  View on GitHub
  Detecting and Responding to Threats using Microsoft 365 Defender, published by Packt
  ☆16Jul 10, 2023Updated 2 years ago
• ActiveDirectoryManagementFramework / DCManagement

  View on GitHub
  PowerShell module to manage domain controllers & initial domain deployments
  ☆13Oct 31, 2025Updated 4 months ago
• gvnshtn / ExamGuides

  View on GitHub
  My set of notes and resources for Microsoft and other exams
  ☆15Oct 20, 2021Updated 4 years ago
• MSSAPSCA1 / Azure_Sentinel

  View on GitHub
  Bulk turn on Analytic rules in Azure Sentinel
  ☆19Oct 7, 2021Updated 4 years ago
• HoussemDellai / azure-pipelines-secrets-key-vault

  View on GitHub
  Demoing how to use Azure Key Vault Secrets from within Azure DevOps Pipelines.
  ☆16Mar 23, 2022Updated 3 years ago
• rohnedwards / PowerShellAccessControl

  View on GitHub
  Community repository for access control DSC resources
  ☆33Aug 31, 2015Updated 10 years ago
• eshlomo1 / MS-Defender-4-xOPS

  View on GitHub
  ☆17Jul 20, 2024Updated last year
• clivewatson / KQLpublic

  View on GitHub
  My useful KQL and Azure Monitor workbooks (Public)
  ☆116Feb 26, 2026Updated last week
• soulemike / ad-awesome

  View on GitHub
  Microsoft Active Directory (AD) Awesome List
  ☆26Feb 27, 2025Updated last year
• thalpius / Microsoft-Defender-for-Identity-Configuration-Checker

  View on GitHub
  ☆45May 9, 2023Updated 2 years ago
• jkerai1 / KQL-Queries

  View on GitHub
  KQL Queries
  ☆33Feb 17, 2026Updated 2 weeks ago
• inodee / spl-to-kql

  View on GitHub
  The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…
  ☆44Nov 7, 2020Updated 5 years ago
• jasonmarcher / poco

  View on GitHub
  Interactive pipeline filtering in PowerShell (a port of peco).
  ☆22Jul 9, 2019Updated 6 years ago
• lkarlslund / azureimposter

  View on GitHub
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆27Dec 1, 2022Updated 3 years ago
• Ap3x / Panoptes

  View on GitHub
  Panoptes Endpoint Detection and Response Solution
  ☆42Jan 19, 2026Updated last month
• EEN421 / KQL-Queries

  View on GitHub
  Ian Hanley's deceptively simple KQL queries.
  ☆68Dec 27, 2025Updated 2 months ago
• debaxtermsft / debaxtermsft

  View on GitHub
  Config files for my GitHub profile.
  ☆10Oct 24, 2025Updated 4 months ago
• DanielChronlund / DCSecurityOperations

  View on GitHub
  A collection of Microsoft Sentinel workbooks and analytics rules.
  ☆111Feb 8, 2024Updated 2 years ago
• ActiveDirectoryManagementFramework / ADMF

  View on GitHub
  Module for managing configuration contexts for Active Directory
  ☆30Oct 31, 2025Updated 4 months ago
• sreedharande / Microsoft-Sentinel-As-A-Code

  View on GitHub
  Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …
  ☆59Sep 15, 2022Updated 3 years ago
• briandelmsft / SentinelAutomationModules

  View on GitHub
  The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
  ☆277Jan 2, 2026Updated 2 months ago
• TaoYang-Cloud / AzureResourceGraph

  View on GitHub
  Collection of Azure Resource Graph Queries
  ☆26Dec 18, 2024Updated last year
• eshlomo1 / CloudSec

  View on GitHub
  Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're d…
  ☆47Feb 14, 2026Updated 2 weeks ago
• Truvis / Sentinel

  View on GitHub
  ☆30May 1, 2025Updated 10 months ago
• opsdisk / cyber_plumbers_handbook_lab_info

  View on GitHub
  Information for accessing The Cyber Plumber's Handbook Lab
  ☆31Oct 10, 2022Updated 3 years ago
• ms-sambell / aks-workbook

  View on GitHub
  A sample Azure Workbook to help customers troubleshoot an AKS cluster.
  ☆31Jul 3, 2023Updated 2 years ago
• labyrinthinesecurity / silhouette

  View on GitHub
  An Azure SPN access minimizer
  ☆47Jan 15, 2026Updated last month
• ElanShudnow / AzureCode

  View on GitHub
  A place to share all the Azure Code I am writing. This includes PowerShell, Terraform, ARM, Bicep, Ansible, etc...
  ☆81Nov 11, 2025Updated 3 months ago
• fabioharams / azsecurityworkshop

  View on GitHub
  Security Workshop | Azure
  ☆10Jul 28, 2020Updated 5 years ago
• Pantheon-Security / notebooklm-mcp-secure

  View on GitHub
  Secure NotebookLM MCP Server - Query Google NotebookLM from Claude/AI agents with 14 security hardening layers
  ☆37Updated this week
• rod-trent / KQL-for-Everything

  View on GitHub
  KQL example queries for working in Azure
  ☆36Dec 1, 2025Updated 3 months ago
• EvotecIT / PSPublishModule

  View on GitHub
  This module is a module builder helper that helps build PowerShell modules "Evotec way". It allows us to make sure our modules are built …
  ☆41Updated this week
• CodeByHarri / Sigma2KQL

  View on GitHub
  Sigma Queries turned into KQL for Defender using pysigma
  ☆12Jun 20, 2024Updated last year
• Shrfnt77 / AmsiBypass

  View on GitHub
  Bypassing Amsi using LdrLoadDll
  ☆47Jan 8, 2025Updated last year
• JohnnyMirza / confluent_splunk_demo

  View on GitHub
  Confluent s2s Demo
  ☆11Apr 28, 2023Updated 2 years ago
• redi-git / SCCM_SLAP

  View on GitHub
  Regex based secret scanner for sccm deployment points sccmcontentlib$ shares. Find secrets automatically and download entire packages for…
  ☆18Aug 13, 2025Updated 6 months ago
• microsoft / DefenderFileScanNotifier

  View on GitHub
  ☆14Nov 14, 2023Updated 2 years ago
• KernelCaleb / Kustonomicon

  View on GitHub
  A series of cloud focused KQL queries for threat hunting and DFIR
  ☆11Oct 21, 2025Updated 4 months ago
• kylgrn / azure_rbac_audit

  View on GitHub
  Script to output Azure IAM permissions and flag any explicit/owner permissions for review
  ☆10May 18, 2020Updated 5 years ago