Visualize Microsoft Defender XDR process trees and security events
☆32Aug 24, 2025Updated 6 months ago
Alternatives and similar repositories for XDRStoryParser
Users that are interested in XDRStoryParser are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Manage and maintain Defender XDR custom collection configuration☆34Nov 19, 2025Updated 4 months ago
- Automated Phishing Tool☆11May 27, 2020Updated 5 years ago
- Repository with Hunting and Detection Queries for Microsoft Sentinel and Microsoft Defender XDR☆17Nov 7, 2025Updated 4 months ago
- Copilot for Security Tools☆18Apr 19, 2024Updated last year
- This GitHub repository contains lessons for developing Microsoft Security CoPilot plugins☆20May 15, 2024Updated last year
- The purpose of this repository is to share KQL queries to help identify security misconfigurations, hunt for specific patterns, or detect…☆81Feb 10, 2026Updated last month
- Security Scripts and Sources for daily usage.☆72Jan 25, 2026Updated last month
- MSIX Building Made Easy for Defenders☆64Aug 25, 2025Updated 6 months ago
- Interactive PowerShell framework for testing WMI, COM, LOLBAS, and persistence techniques☆98Dec 28, 2025Updated 2 months ago
- Share Information about Microsoft Security Products☆47Updated this week
- Adversary Simulation Framework☆38Aug 19, 2025Updated 7 months ago
- This powerbi dashboards will help the Security team to analyze KBs, delivered monthly by Microsoft☆14Mar 9, 2022Updated 4 years ago
- MDE Tester is designed to help testing various features in Microsoft Defender for Endpoint.☆193Feb 20, 2026Updated last month
- AIL project training materials☆39Feb 24, 2026Updated 3 weeks ago
- A cargo subcommand to build Rust with docker☆19Aug 24, 2017Updated 8 years ago
- The Solana Wallet Manager & Transaction Notifier is a TypeScript app for managing and tracking Solana blockchain transactions. It creates…☆11Jun 23, 2025Updated 9 months ago
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆841Updated this week
- A simple Powershell Module to help people managing Active Directory Shadow Group☆15May 15, 2019Updated 6 years ago
- Links to malware-related YARA rules☆15Sep 29, 2022Updated 3 years ago
- KQL queries for Incident Response☆14Oct 31, 2023Updated 2 years ago
- Discover a curated collection of scripts for Microsoft Azure and Microsoft 365 in this repository. Tailored for efficiency and automation…☆36Oct 21, 2025Updated 5 months ago
- Various Modules & Scripts for use with Viper Framework☆27Aug 20, 2019Updated 6 years ago
- Content Repo for Demystifying KQL Tutorial Series☆73Sep 1, 2024Updated last year
- Overview of MS Defender☆118Feb 20, 2026Updated last month
- Censorship Bypass Guide☆22Dec 7, 2025Updated 3 months ago
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆196Dec 20, 2024Updated last year
- A console tool for inspecting Windows Ancillary Function Driver sockets☆21May 15, 2025Updated 10 months ago
- Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or eve…☆280Dec 20, 2025Updated 3 months ago
- PaySol is a chat based non-custodial crypto wallet that empower users to transact SOLs via P2P, keep track of financial records, advertis…☆12Sep 3, 2021Updated 4 years ago
- ☆23Dec 15, 2022Updated 3 years ago
- A curated collection of DFIR skills and workflows for InfoSec practitioners.☆260Feb 8, 2026Updated last month
- ☆19Jul 21, 2022Updated 3 years ago
- ☆44Jul 11, 2025Updated 8 months ago
- [ARCHIVED] Provides a repository of code snippets that use the Microsoft Graph to perform common tasks such as sending email, managing gr…☆12May 10, 2019Updated 6 years ago
- Pi-hole Maintenance PRO MAX for Pi-hole v6.x on Raspberry Pi: automated apt updates, Gravity refresh, logging, backups, health checks.☆18Dec 27, 2025Updated 2 months ago
- Persist like a Dodder☆68May 19, 2025Updated 10 months ago
- Defender XDR Advanced Hunting Queries (MDE, MDAV, Device Discovery)☆12Jan 22, 2026Updated 2 months ago
- Expose a lot of MDE telemetry that is not easily accessible in any searchable form☆119Aug 19, 2025Updated 7 months ago
- Azure AD Identity Protection Cookie Spoofing☆36Sep 2, 2023Updated 2 years ago