PowerShell commands to export the Azure Sentinel Rule Templates to a CSV and to create the Rules from selected entries in the CSV file
☆17Oct 31, 2024Updated last year
Alternatives and similar repositories for AzSentinelAnalyticsRules
Users that are interested in AzSentinelAnalyticsRules are comparing it to the libraries listed below
Sorting:
- ☆14Feb 22, 2021Updated 5 years ago
- Deploying and Managing Azure Sentinel – Ninja style☆32Dec 9, 2020Updated 5 years ago
- A collection of scripts and works related to Azure Sentinel☆42Jul 9, 2022Updated 3 years ago
- ☆30Nov 11, 2024Updated last year
- Azure Sentinel Template parser☆16Nov 2, 2020Updated 5 years ago
- A collection of things I've created or found that I think is useful for Azure Sentinel.☆18Jan 28, 2026Updated last month
- a azure monitor workbook for LogicApps☆17Apr 10, 2020Updated 5 years ago
- ☆31Sep 4, 2023Updated 2 years ago
- Azure Sentinel Workshop☆18Jun 5, 2021Updated 4 years ago
- Sentinel Analytics Rule converter PowerShell module☆67Feb 24, 2026Updated 3 weeks ago
- Windows Defender ATP - Advanced Hunting Queries☆22Apr 12, 2018Updated 7 years ago
- This repo contains sample code that demonstrates programmatic access to Azure AD Access Reviews. Sample code includes reading and managin…☆49Jul 8, 2021Updated 4 years ago
- ☆67Mar 9, 2026Updated last week
- Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD …☆59Sep 15, 2022Updated 3 years ago
- Bicep examples repo for log analytics, azure monitor and sentinel☆26Mar 16, 2023Updated 3 years ago
- Azure-Sentinel-BYOML☆12Nov 8, 2019Updated 6 years ago
- This code snippet retrieves Azure Sentinel rules that are mapped to MITRE ATT&CK Framework and generates the related MITRE D3FEND defense…☆74Jun 28, 2021Updated 4 years ago
- Detection rules and threat hunting queries in Defender XDR and Azure Sentinel☆16Mar 13, 2026Updated last week
- Automatically generated Sysmon parser for Azure Sentinel☆18Jan 6, 2026Updated 2 months ago
- FTA Live Infrastructure as Code☆10May 16, 2023Updated 2 years ago
- This repository is used to store the Azure Information Protection Deployment Acceleration Guide☆29May 31, 2019Updated 6 years ago
- Azure OpenAI Playbook created for Microsoft Sentinel☆13May 2, 2024Updated last year
- Microsoft Defender ATP Manageability and Maintenance scripts☆29Jun 12, 2023Updated 2 years ago
- Sentinel Recon Tools Workbook☆14Aug 24, 2022Updated 3 years ago
- Code samples for SQL Server Discovery using the Microsoft Assessment and Planning (MAP) toolkit☆11Dec 9, 2020Updated 5 years ago
- Miscellaneous notebooks to use with Sentinel Hub☆20Aug 28, 2023Updated 2 years ago
- ☆11Mar 16, 2023Updated 3 years ago
- These are tools I cheated with the help of ChatGPT to help me with Penetration Testing and Red Teaming☆15Feb 24, 2024Updated 2 years ago
- Built a mini HoneyNet in Azure and ingest log sources from various resources into a Log Analytics workspace☆24Jul 19, 2023Updated 2 years ago
- My custom bash setup. It's awesome, check it out!☆11Apr 19, 2020Updated 5 years ago
- Integration tools for TheHive and Azure Sentinel☆13Sep 23, 2020Updated 5 years ago
- MISP to Sentinel integration☆79Feb 6, 2026Updated last month
- Sync Windows configuration, program settings, dotfiles and PowerShell profiles☆13Feb 18, 2026Updated last month
- ☆12Jun 24, 2024Updated last year
- Source code repository for ADO Security Scanner.☆31Aug 5, 2024Updated last year
- putting all together: customer environment, some threats, azure security services, Microsoft 365 Defender services, Azure monitor service…☆17Apr 11, 2022Updated 3 years ago
- ☆19Mar 10, 2026Updated last week
- KQL Sentinel and Defender Detection and Hunting Queries.☆16Feb 24, 2026Updated 3 weeks ago
- Beginners Guide to Hunting for Threats☆18Apr 26, 2025Updated 10 months ago