Defender XDR Advanced Hunting Queries (MDE, MDAV, Device Discovery)
☆12Jan 22, 2026Updated 2 months ago
Alternatives and similar repositories for DefenderXDR-AdvancedHunting-KQL
Users that are interested in DefenderXDR-AdvancedHunting-KQL are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting☆68Dec 7, 2025Updated 3 months ago
- Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant.☆133Feb 10, 2026Updated last month
- ✍️ A curated list of CVE PoCs.☆13Jan 24, 2018Updated 8 years ago
- ☆10Oct 25, 2020Updated 5 years ago
- Block abused TLDs in Tenant Allow BlockList☆14Jan 21, 2026Updated 2 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- A WDAC configuration repository with the sole intention of enriching MDE☆30Jun 18, 2025Updated 9 months ago
- Windows Defender ATP - Advanced Hunting Queries☆22Apr 12, 2018Updated 7 years ago
- Share Information about Microsoft Security Products☆47Mar 18, 2026Updated last week
- This powerbi dashboards will help the Security team to analyze KBs, delivered monthly by Microsoft☆14Mar 9, 2022Updated 4 years ago
- Miscellaneous notebooks to use with Sentinel Hub☆20Aug 28, 2023Updated 2 years ago
- Scripts to deploy and update MISP in air-gapped environments☆17Jan 20, 2026Updated 2 months ago
- The Solana Wallet Manager & Transaction Notifier is a TypeScript app for managing and tracking Solana blockchain transactions. It creates…☆11Jun 23, 2025Updated 9 months ago
- some KQL Queries for Advanced Hunting☆71Mar 12, 2026Updated 2 weeks ago
- Code for the Arduino Home Automation book published by PacktPub☆11Jun 4, 2014Updated 11 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Advanced Hunting Queries for Microsoft Security Products☆108Jan 10, 2023Updated 3 years ago
- Simple GUI for Microsoft Defender for Endpoint API machine actions in PowerShell.☆41Jan 11, 2023Updated 3 years ago
- Censorship Bypass Guide☆22Dec 7, 2025Updated 3 months ago
- ☆39Mar 17, 2026Updated last week
- PaySol is a chat based non-custodial crypto wallet that empower users to transact SOLs via P2P, keep track of financial records, advertis…☆12Sep 3, 2021Updated 4 years ago
- HAProxy CE Docker Debian image☆14Updated this week
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆40Apr 8, 2021Updated 4 years ago
- Code for Rumal Backend that will interface with Thug Daemon☆11Nov 24, 2016Updated 9 years ago
- tenjint is a Python 3-based platform for virtual machine introspection (VMI) on x86 and ARM. This is main Python 3 tenjint library.☆11Feb 9, 2021Updated 5 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Additional Resources to improve Customer Experience with Azure Advanced Threat Protection☆22Jun 12, 2023Updated 2 years ago
- ☆18Jul 13, 2022Updated 3 years ago
- Visualize Microsoft Defender XDR process trees and security events☆32Aug 24, 2025Updated 7 months ago
- Miscellaneous Azure Sentinel files that don't fall into other categories.☆13Aug 23, 2021Updated 4 years ago
- Sharing my KQL queries for Azure Sentinel☆208Feb 9, 2026Updated last month
- A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…☆762Aug 28, 2025Updated 6 months ago
- Hunting Queries for Defender ATP☆83Dec 14, 2025Updated 3 months ago
- Preview email message files (EML) in VS Code☆16Apr 14, 2022Updated 3 years ago
- Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).☆806Jan 14, 2026Updated 2 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- Cloud-native SIEM for intelligent security analytics for your entire enterprise.☆20Apr 4, 2023Updated 2 years ago
- ESP8266 Based WiFi Deauther with more features (like: WebConsole, WebConverter)☆10Jan 3, 2023Updated 3 years ago
- Automatically exported from code.google.com/p/plcscan☆18Sep 5, 2015Updated 10 years ago
- ☆28Sep 9, 2024Updated last year
- Dmoz RDF parser☆28Jun 22, 2016Updated 9 years ago
- This script gets all accepted domains in Microsoft 365 using autodiscover, gets the tenant name and checks if there is a Microsoft Defend…☆23May 27, 2024Updated last year
- Homebrew MCP : Comprehensive brew support for installing, upgrading, searching, and maintaining macOS packages.☆25Jun 23, 2025Updated 9 months ago