microsoft / msticpy-trainingLinks
Training and support materials for MSTICPy
☆17Updated 2 years ago
Alternatives and similar repositories for msticpy-training
Users that are interested in msticpy-training are comparing it to the libraries listed below
Sorting:
- A lab environment for learning about MSTICPy☆37Updated 2 years ago
- The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…☆43Updated 4 years ago
- Cloud-native SIEM for intelligent security analytics for your entire enterprise.☆20Updated 2 years ago
- A few scripts I put together to send and receive data from an Azure Log Analytics workspace leveraging the Azure Monitor HTTP Data Collec…☆23Updated 2 years ago
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆36Updated 5 months ago
- Links and guidance related to the return on mitigation report in the Microsoft Digital Defense Report☆28Updated last year
- Defender Resource Hub☆26Updated last week
- Tool to extract Sessions, MessageID(s) and find the emails belonging to MessageID(s). This script utilizes the MailItemsAccessed features…☆41Updated 4 years ago
- ☆72Updated 8 months ago
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆38Updated 7 months ago
- An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…☆52Updated 3 weeks ago
- A WDAC configuration repository with the sole intention of enriching MDE☆29Updated last week
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆39Updated 4 years ago
- ☆30Updated last year
- Repository to publish sample use cases, templates, solutions, automations for Microsoft Defender Threat Intelligence (MDTI) product☆79Updated 9 months ago
- Collection of Microsoft Identity Threat Detection and Response resources.☆46Updated 3 weeks ago
- Solution to deploy a Sentinel playground demo environment☆56Updated 2 years ago
- Sentinel Recon Tools Workbook☆13Updated 2 years ago
- MSTIC Notebook Components☆32Updated 2 months ago
- KQL queries for cyber defense and for solving daily issues☆52Updated last week
- ☆43Updated 4 years ago
- ☆17Updated 3 years ago
- The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…☆54Updated last year
- MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore☆66Updated 2 years ago
- Azure Sentinel Template parser☆16Updated 4 years ago
- This repository is used by FalconForce to release parts of the internal tools used for maintaining, validating and automatically deployin…☆17Updated 2 years ago
- Misc. content for Microsoft Sentinel☆18Updated last year
- ☆26Updated 2 years ago
- M365 MDATP Live Response sample scripts☆74Updated 7 months ago
- Repository with supporting materials for Invictus Academy/Training☆43Updated 5 months ago