Visualize Microsoft Defender XDR process trees and security events
☆33Aug 24, 2025Updated 7 months ago
Alternatives and similar repositories for XDRStoryParser
Users that are interested in XDRStoryParser are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Manage and maintain Defender XDR custom collection configuration☆34Nov 19, 2025Updated 4 months ago
- Automated Phishing Tool☆11May 27, 2020Updated 5 years ago
- This is my attempt at creating "container" based solutions, where every folder is a solution to a question, problem or business need that…☆17Jan 31, 2025Updated last year
- Repository with Hunting and Detection Queries for Microsoft Sentinel and Microsoft Defender XDR☆17Nov 7, 2025Updated 5 months ago
- Copilot for Security Tools☆18Apr 19, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…☆82Feb 10, 2026Updated 2 months ago
- This GitHub repository contains lessons for developing Microsoft Security CoPilot plugins☆20May 15, 2024Updated last year
- MSIX Building Made Easy for Defenders☆64Aug 25, 2025Updated 7 months ago
- KustoHawk is a lightweight incident triage and response tool designed for effective incident response in Microsoft Defender XDR and Micro…☆149Apr 1, 2026Updated last week
- Adversary Simulation Framework☆39Aug 19, 2025Updated 7 months ago
- This powerbi dashboards will help the Security team to analyze KBs, delivered monthly by Microsoft☆14Mar 9, 2022Updated 4 years ago
- Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques☆113Dec 28, 2025Updated 3 months ago
- MDE Tester is designed to help testing various features in Microsoft Defender for Endpoint.☆194Feb 20, 2026Updated last month
- AIL project training materials☆39Feb 24, 2026Updated last month
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Perform file-based malware scan on your on-prem servers with AWS☆14Oct 31, 2023Updated 2 years ago
- A cargo subcommand to build Rust with docker☆19Aug 24, 2017Updated 8 years ago
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆869Updated this week
- A simple Powershell Module to help people managing Active Directory Shadow Group☆15May 15, 2019Updated 6 years ago
- ☆12Oct 9, 2013Updated 12 years ago
- KQL queries for Incident Response☆14Oct 31, 2023Updated 2 years ago
- Share Information about Microsoft Security Products☆61Updated this week
- Discover a curated collection of scripts for Microsoft Azure and Microsoft 365 in this repository. Tailored for efficiency and automation…☆36Oct 21, 2025Updated 5 months ago
- Guidance and collateral for troubleshooting and managing Azure Sentinel data costs.☆28Oct 9, 2023Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Content Repo for Demystifying KQL Tutorial Series☆73Sep 1, 2024Updated last year
- Retrieves and aggregates public OSINT data about a GitHub user using Go and the GitHub API. Finds hidden emails in commit history, previo…☆41Apr 1, 2026Updated last week
- Overview of MS Defender☆119Feb 20, 2026Updated last month
- A console tool for inspecting Windows Ancillary Function Driver sockets☆21May 15, 2025Updated 10 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆196Dec 20, 2024Updated last year
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆280Dec 20, 2025Updated 3 months ago
- ☆23Dec 15, 2022Updated 3 years ago
- A curated collection of DFIR skills and workflows for InfoSec practitioners.☆278Updated this week
- CTI Expert — Cyber Threat Intelligence & OSINT analysis skill for Claude Code. 67+ commands, 35 techniques, no API keys required.☆61Updated this week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆19Jul 21, 2022Updated 3 years ago
- ☆44Jul 11, 2025Updated 9 months ago
- [ARCHIVED] Provides a repository of code snippets that use the Microsoft Graph to perform common tasks such as sending email, managing gr…☆12May 10, 2019Updated 6 years ago
- Persist like a Dodder☆68May 19, 2025Updated 10 months ago
- Defender XDR Advanced Hunting Queries (MDE, MDAV, Device Discovery)☆12Jan 22, 2026Updated 2 months ago
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆119Aug 19, 2025Updated 7 months ago
- Azure AD Identity Protection Cookie Spoofing☆36Sep 2, 2023Updated 2 years ago