microsoft / EventLogExpertLinks
☆209Updated last month
Alternatives and similar repositories for EventLogExpert
Users that are interested in EventLogExpert are comparing it to the libraries listed below
Sorting:
- Repository for Software Certs for easy software blocking across corp environments, for example, using MDE IOC☆46Updated this week
- OneDrive log .ODL reader☆144Updated 9 months ago
- A set of troubleshooting, diagnostic, and information utilities for Windows☆60Updated last month
- ☆91Updated this week
- PowerShell module that intearacts with the VirusTotal service using a VirusTotal API (free)☆61Updated 7 months ago
- Custom ADMX template focused on hardening Windows 10 & Windows 11 systems☆86Updated last week
- Documentation and tools to access Windows Defender Application Control (WDAC) technology.☆237Updated 2 months ago
- Repository hosting a static list of Microsoft First party apps and Graph permissions that's updated daily☆146Updated last week
- A PowerShell module for incident response and threat hunting.☆34Updated last year
- ☆61Updated 2 years ago
- Repository to publish sample use cases, templates, solutions, automations for Microsoft Defender Threat Intelligence (MDTI) product☆79Updated 10 months ago
- A guide to using Azure Data Explorer and KQL for DFIR☆109Updated 3 years ago
- Simple GUI for Microsoft Defender for Endpoint API machine actions in PowerShell.☆36Updated 2 years ago
- Collection of Microsoft Identity Threat Detection and Response resources.☆49Updated last week
- This module allows the creation of password expiry emails for users, managers, administrators, and security according to defined template…☆156Updated 3 months ago
- A command line tool to explore real-time streams of events.☆87Updated 5 months ago
- KQL queries for cyber defense and for solving daily issues☆53Updated last week
- Microsoft 365 Security Assessment Tool - A Easy-To-Use Microsoft 365 Security Assessment Tool☆135Updated 3 months ago
- M365 MDATP Live Response sample scripts☆76Updated 9 months ago
- Microsoft Threat Intelligence☆188Updated this week
- ☆56Updated 4 months ago
- Sentinel Analytics Rule converter PowerShell module☆65Updated 6 months ago
- The Azure Active Directory Incident Response PowerShell module provides a number of tools, developed by the Azure Active Directory Produc…☆441Updated 2 years ago
- Search Index Database Reporter☆114Updated 9 months ago
- A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID☆505Updated 2 weeks ago
- This tool is designed to assist you in analyzing issues related to Defender for Endpoint on your local endpoint. It offers a centralized …☆69Updated last month
- MDE Tester is designed to help testing various features in Microsoft Defender for Endpoint.☆191Updated last year
- Venture: Cross-Platform GUI tool for parsing and analyzing Windows event logs☆90Updated 6 months ago
- Repository with Sentinel Analytics Rules, Hunting Queries and helpful external data sources.☆116Updated last week
- OneDriveExplorer is a command line and GUI based application for reconstructing the folder structure of OneDrive from the <UserCid>.dat a…☆208Updated last month