kphillip1 / azure-soc-honeynetLinks
☆15Updated last year
Alternatives and similar repositories for azure-soc-honeynet
Users that are interested in azure-soc-honeynet are comparing it to the libraries listed below
Sorting:
- Content and collateral for the Microsoft Sentinel SOC 101 series☆182Updated last year
- A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…☆694Updated 3 weeks ago
- ☆325Updated 3 weeks ago
- Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.☆472Updated 6 months ago
- Unlock the power of Splunk SIEM for comprehensive log analysis. Collaborate and innovate with our Splunk Log Analysis Projects on GitHub☆138Updated 11 months ago
- ☆38Updated last year
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆637Updated this week
- Playbooks for SOC Analysts☆516Updated 2 years ago
- Open Source Security Operations Center Documentation☆186Updated 3 weeks ago
- ☆23Updated last year
- KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…☆1,469Updated last week
- Intro Labs Remastered☆32Updated 2 months ago
- Splunk Boss of the SOC version 3 dataset.☆345Updated 4 years ago
- Repository for SOC analysts, queries to investigate, advanced hunting, sites for analysis, malware samples, courses to improve skills, IO…☆23Updated last week
- Useful resources for SOC Analyst and SOC Analyst candidates.☆757Updated last year
- The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel☆248Updated last week
- Practical Windows Forensics Training☆665Updated last year
- https://academy.tcm-sec.com/☆112Updated 2 months ago
- Azure Sentinel KQL☆447Updated 8 months ago
- ☆40Updated 10 months ago
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆393Updated 5 months ago
- This repository contains Community and Field contributed content for LogScale☆231Updated this week
- This short python script enables you to scan IPs on the fly by using VirusTotal's API. Just keep the window open on your extra monitor a…☆14Updated last year
- Great List of Resources to Build an Enterprise Grade Home Lab☆837Updated last year
- A curated list of blogs, videos, tutorials, queries and anything else valuable to help you learn and master KQL and Microsoft Sentinel☆229Updated 2 years ago
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆672Updated 8 months ago
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆635Updated this week
- SOC Interview Questions☆1,152Updated 8 months ago
- This is a public repository to help those trying to learn Azure content and certifications to better understand the concepts and have a c…☆28Updated last year
- Sample queries and data as part of the Microsoft Press book, The Definitive Guide to KQL☆249Updated 9 months ago