Microsoft Sentinel SIEM Log Source Analyzer
☆28Jun 10, 2026Updated last month
Alternatives and similar repositories for log-horizon
Users that are interested in log-horizon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Defender Resource Hub☆32Jul 1, 2026Updated last week
- Discover gaps in Entra Conditional Access policies before attackers do☆131Jun 8, 2026Updated last month
- KQL Detections for Microsoft Sentinel and Microsoft 365 Defender☆22Nov 15, 2024Updated last year
- A schema-aware dataset and Claude AI skill for Microsoft Defender XDR Advanced Hunting.☆36May 6, 2026Updated 2 months ago
- Tier0 (Tier Zero) Account discovery for ActiveDirectory Security☆17Apr 11, 2018Updated 8 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- KQLIntel is a browser-based tool that uses LLMs to convert threat intelligence reports into actionable Kusto Query Language (KQL) queries…☆31Aug 4, 2025Updated 11 months ago
- Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.☆148Updated this week
- ☆30Feb 12, 2026Updated 5 months ago
- Manage and maintain Defender XDR custom collection configuration☆39Nov 19, 2025Updated 7 months ago
- An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…☆66Mar 30, 2026Updated 3 months ago
- Microsoft Sentinel related content☆38Jan 22, 2025Updated last year
- Automatically deploying Mythic C2 in Azure using Terraform☆20Jul 3, 2026Updated last week
- Collection of different Azure/Entra focused solutions (Deployable templates, Function Apps, etc)☆81Apr 12, 2026Updated 3 months ago
- ☆81Feb 19, 2026Updated 4 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆71Apr 20, 2026Updated 2 months ago
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆39Oct 30, 2024Updated last year
- Copilot for Security Tools☆19Apr 19, 2024Updated 2 years ago
- KQL for Azure Resource Manager and AppID search☆23Aug 15, 2024Updated last year
- SOCAutomators Substack blog companion — threat research, DBIR analysis, and security operations content☆20Jun 3, 2026Updated last month
- PDump is a project for dumping leaked credentials from DEHASHED☆17Jan 21, 2024Updated 2 years ago
- Share Information about Microsoft Security Products☆108Updated this week
- OID-See is an identity attack surface mapping tool that models OAuth trust, persistence, and impersonation paths in Entra using a graph-b…☆38Jul 4, 2026Updated last week
- CAPSlock is an offline Conditional Access (CA) analysis tool built on top of a roadrecon database. It helps defenders, auditors, and red …☆93May 16, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆19Dec 18, 2024Updated last year
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆17Mar 10, 2023Updated 3 years ago
- A wrapper script for https://sploitus.com to scrape query results for tools and exploits☆14Mar 3, 2019Updated 7 years ago
- A TUI for Active Directory collection.☆144Mar 17, 2026Updated 3 months ago
- Modular OSINT and attack surface analysis platform for authorized security research, with risk scoring, attack paths, and report generati…☆24Jun 4, 2026Updated last month
- MSIX Building Made Easy for Defenders☆64Aug 25, 2025Updated 10 months ago
- Threat hunting queries, Sigma rules, and detection engineering research based on MITRE ATT&CK techniques.☆32Updated this week
- The web application facilitates the exchange of confidential data with several layers of encryption and security measures.☆21Updated this week
- ☆19Sep 3, 2021Updated 4 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- ASR Configurator, Essentials and Atomic Testing☆109Apr 14, 2025Updated last year
- A curated collection of Living off the Land (LotL) attack demonstrations where trusted binaries go rogue, because if it didn’t launch cal…☆37Jan 7, 2026Updated 6 months ago
- An Ansible role to install cobalt-strike☆16Aug 24, 2020Updated 5 years ago
- Splunk Add-on for PowerShell provides field extraction for PowerShell event logs.☆17Feb 1, 2021Updated 5 years ago
- This project is an Ansible Role to execute Atomic Red Team tests against multiple machines by wrapping Invoke-AtomicRedTeam☆28Jul 4, 2024Updated 2 years ago
- Velociraptor Server hosted in Azure App Service☆59Jun 4, 2025Updated last year
- Repository for Software Certs for easy software blocking across corp environments, for example, using MDE IOC☆72Updated this week