kphillip1 / azure-soc-honeynetLinks
☆15Updated last year
Alternatives and similar repositories for azure-soc-honeynet
Users that are interested in azure-soc-honeynet are comparing it to the libraries listed below
Sorting:
- Content and collateral for the Microsoft Sentinel SOC 101 series☆182Updated last year
- Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.☆474Updated 7 months ago
- KQL Queries. Microsoft Defender, Microsoft Sentinel☆669Updated this week
- ☆330Updated 3 weeks ago
- A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 D…☆700Updated last month
- ☆24Updated last year
- Playbooks for SOC Analysts☆528Updated 2 years ago
- Unlock the power of Splunk SIEM for comprehensive log analysis. Collaborate and innovate with our Splunk Log Analysis Projects on GitHub☆147Updated last year
- Azure Sentinel KQL☆449Updated 9 months ago
- A curated list of blogs, videos, tutorials, queries and anything else valuable to help you learn and master KQL and Microsoft Sentinel☆230Updated 2 years ago
- Intro Labs Remastered☆32Updated 3 months ago
- ☆96Updated last year
- Open Source Security Operations Center Documentation☆188Updated last month
- Splunk Boss of the SOC version 3 dataset.☆345Updated 5 years ago
- KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunt…☆1,476Updated last week
- This is a public repository to help those trying to learn Azure content and certifications to better understand the concepts and have a c…☆30Updated last year
- ☆38Updated last year
- Study guide for the SC-900: Microsoft Security, Compliance, and Identity☆88Updated 2 years ago
- This is a Project Designed for Security Analysts and all SOC audiences who wants to play with implementation and explore the Modern SOC a…☆677Updated 9 months ago
- The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel☆253Updated 3 weeks ago
- Sample queries and data as part of the Microsoft Press book, The Definitive Guide to KQL☆251Updated 9 months ago
- Practical Windows Forensics Training☆668Updated last year
- A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as …☆393Updated 5 months ago
- https://academy.tcm-sec.com/☆120Updated 2 weeks ago
- Repository for SOC analysts, queries to investigate, advanced hunting, sites for analysis, malware samples, courses to improve skills, IO…☆26Updated 3 weeks ago
- A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.☆645Updated 3 weeks ago
- Collection of KQL queries☆1,541Updated 6 months ago
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆490Updated 2 weeks ago
- Study sheet for AZ-900 exam☆13Updated 2 years ago
- Code included as part of the MustLearnKQL blog series☆1,065Updated 2 months ago