Alternatives and similar repositories for Visual-Auditing-Security-Workbook-with-Microsoft-Sentinel

Users that are interested in Visual-Auditing-Security-Workbook-with-Microsoft-Sentinel are comparing it to the libraries listed below

• ActiveDirectoryManagementFramework / DCManagement

  View on GitHub
  PowerShell module to manage domain controllers & initial domain deployments
  ☆13Oct 31, 2025Updated 3 months ago
• gvnshtn / ExamGuides

  View on GitHub
  My set of notes and resources for Microsoft and other exams
  ☆15Oct 20, 2021Updated 4 years ago
• MSSAPSCA1 / Azure_Sentinel

  View on GitHub
  Bulk turn on Analytic rules in Azure Sentinel
  ☆19Oct 7, 2021Updated 4 years ago
• HoussemDellai / azure-pipelines-secrets-key-vault

  View on GitHub
  Demoing how to use Azure Key Vault Secrets from within Azure DevOps Pipelines.
  ☆16Mar 23, 2022Updated 3 years ago
• eshlomo1 / MS-Defender-4-xOPS

  View on GitHub
  ☆17Jul 20, 2024Updated last year
• clivewatson / KQLpublic

  View on GitHub
  My useful KQL and Azure Monitor workbooks (Public)
  ☆116Jan 9, 2026Updated last month
• jkerai1 / KQL-Queries

  View on GitHub
  KQL Queries
  ☆30Updated this week
• soulemike / ad-awesome

  View on GitHub
  Microsoft Active Directory (AD) Awesome List
  ☆26Feb 27, 2025Updated 11 months ago
• thalpius / Microsoft-Defender-for-Identity-Configuration-Checker

  View on GitHub
  ☆45May 9, 2023Updated 2 years ago
• jasonmarcher / poco

  View on GitHub
  Interactive pipeline filtering in PowerShell (a port of peco).
  ☆22Jul 9, 2019Updated 6 years ago
• garybushey / ProgrammingMicrosoftSentinel

  View on GitHub
  Programming Microsoft Sentinel book
  ☆25Dec 13, 2023Updated 2 years ago
• lkarlslund / azureimposter

  View on GitHub
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆26Dec 1, 2022Updated 3 years ago
• Ap3x / Panoptes

  View on GitHub
  Panoptes Endpoint Detection and Response Solution
  ☆42Jan 19, 2026Updated 3 weeks ago
• EEN421 / KQL-Queries

  View on GitHub
  Ian Hanley's deceptively simple KQL queries.
  ☆68Dec 27, 2025Updated last month
• ActiveDirectoryManagementFramework / ADMF

  View on GitHub
  Module for managing configuration contexts for Active Directory
  ☆30Oct 31, 2025Updated 3 months ago
• sreedharande / Microsoft-Sentinel-As-A-Code

  View on GitHub
  Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …
  ☆59Sep 15, 2022Updated 3 years ago
• briandelmsft / SentinelAutomationModules

  View on GitHub
  The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
  ☆277Jan 2, 2026Updated last month
• TaoYang-Cloud / AzureResourceGraph

  View on GitHub
  Collection of Azure Resource Graph Queries
  ☆26Dec 18, 2024Updated last year
• Truvis / Sentinel

  View on GitHub
  ☆30May 1, 2025Updated 9 months ago
• eshlomo1 / CloudSec

  View on GitHub
  Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're d…
  ☆47Jan 14, 2026Updated last month
• opsdisk / cyber_plumbers_handbook_lab_info

  View on GitHub
  Information for accessing The Cyber Plumber's Handbook Lab
  ☆31Oct 10, 2022Updated 3 years ago
• ms-sambell / aks-workbook

  View on GitHub
  A sample Azure Workbook to help customers troubleshoot an AKS cluster.
  ☆31Jul 3, 2023Updated 2 years ago
• CodyMathis123 / PSCCMClient

  View on GitHub
  PowerShell Module for managing the MEMCM client
  ☆30Aug 29, 2025Updated 5 months ago
• labyrinthinesecurity / silhouette

  View on GitHub
  An Azure SPN access minimizer
  ☆45Jan 15, 2026Updated 3 weeks ago
• FalconForceTeam / KQLAnalyzer

  View on GitHub
  REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.
  ☆50Sep 22, 2025Updated 4 months ago
• Azure / ausgovcaf-cloudsoe

  View on GitHub
  Open source project for the development of SOE to build Azure IaaS-based solutions.
  ☆11Oct 25, 2022Updated 3 years ago
• rod-trent / KQL-for-Everything

  View on GitHub
  KQL example queries for working in Azure
  ☆36Dec 1, 2025Updated 2 months ago
• Shrfnt77 / AmsiBypass

  View on GitHub
  Bypassing Amsi using LdrLoadDll
  ☆47Jan 8, 2025Updated last year
• sampsonc / AuthHeaderUpdater

  View on GitHub
  Burp extension to specify the token value for the Authenication header while scanning.
  ☆10Sep 18, 2018Updated 7 years ago
• mikaelfun / Intune-IME-Project

  View on GitHub
  IME tool to analyze IntuneManagementExtension.log
  ☆10Apr 25, 2025Updated 9 months ago
• markolauren / sentinel

  View on GitHub
  ☆67Jan 20, 2026Updated 3 weeks ago
• kylgrn / azure_rbac_audit

  View on GitHub
  Script to output Azure IAM permissions and flag any explicit/owner permissions for review
  ☆10May 18, 2020Updated 5 years ago
• redi-git / SCCM_SLAP

  View on GitHub
  Regex based secret scanner for sccm deployment points sccmcontentlib$ shares. Find secrets automatically and download entire packages for…
  ☆18Aug 13, 2025Updated 6 months ago
• CodeByHarri / Sigma2KQL

  View on GitHub
  Sigma Queries turned into KQL for Defender using pysigma
  ☆12Jun 20, 2024Updated last year
• KernelCaleb / Kustonomicon

  View on GitHub
  A series of cloud focused KQL queries for threat hunting and DFIR
  ☆11Oct 21, 2025Updated 3 months ago
• MpCmdRun / uac-bypass

  View on GitHub
  ATL.dll and WmiMgmt.msc UAC Bypass
  ☆12Apr 26, 2025Updated 9 months ago
• hbonath / sonicapi

  View on GitHub
  Python3 Module to interact with the SonicWall® SonicOS API
  ☆14Jan 6, 2025Updated last year
• JohnnyMirza / confluent_splunk_demo

  View on GitHub
  Confluent s2s Demo
  ☆11Apr 28, 2023Updated 2 years ago
• CrossRealms / Splunk-Cyences-App-for-Splunk

  View on GitHub
  Cyences App (Cyber Defense) built by CrossRealms International - https://splunkbase.splunk.com/app/5351/
  ☆11Feb 3, 2026Updated last week