microsoft / msticpy-training
Training and support materials for MSTICPy
☆16Updated last year
Alternatives and similar repositories for msticpy-training:
Users that are interested in msticpy-training are comparing it to the libraries listed below
- A lab environment for learning about MSTICPy☆36Updated last year
- ☆17Updated 3 years ago
- MSTIC Notebook Components☆30Updated 2 months ago
- The idea is simply to save some quick notes that will make it easier for Splunk users to leverage KQL (Kusto), especially giving projects…☆39Updated 4 years ago
- Azure Sentinel Template parser☆16Updated 4 years ago
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆32Updated last month
- Cloud Analytics helps defenders detect attacks to their cloud infrastructure by developing behavioral analytics for cloud platforms as we…☆52Updated last year
- Cloud-native SIEM for intelligent security analytics for your entire enterprise.☆19Updated last year
- A few scripts I put together to send and receive data from an Azure Log Analytics workspace leveraging the Azure Monitor HTTP Data Collec…☆23Updated last year
- Azure function to insert MISP data in to Azure Sentinel☆31Updated 2 years ago
- Repository to publish sample use cases, templates, solutions, automations for Microsoft Defender Threat Intelligence (MDTI) product☆78Updated 4 months ago
- Links and guidance related to the return on mitigation report in the Microsoft Digital Defense Report☆27Updated last year
- Collection of Microsoft Identity Threat Detection and Response resources.☆36Updated 2 weeks ago
- MDE Quickstart is a battle-tested MDE policy set designed to be restored with Intune Backup & Restore☆66Updated 2 years ago
- RRR (Rapid Response Reporting) is a collection of Incident Response Report objects. They are designed to help incident responders provid…☆36Updated 2 years ago
- ☆70Updated 2 months ago
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆31Updated 2 months ago
- Security Scripts and Sources for daily usage.☆51Updated this week
- Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defe…☆36Updated 3 years ago
- KQL queries for cyber defense and for solving daily issues☆46Updated 3 months ago
- ATT&CK Sync is a Center for Threat-Informed Defense project that aims to improve the ability for organizations to consume MITRE ATT&CK® v…☆18Updated last month
- Various tools used to monitor and troubleshoot Azure Sentinel data☆30Updated 2 months ago
- M365 MDATP Live Response sample scripts☆65Updated 2 months ago
- ☆15Updated last year
- Security Copilot resources☆20Updated 5 months ago
- Solution to deploy a Sentinel playground demo environment☆55Updated last year
- ☆27Updated 4 months ago
- A WDAC configuration repository with the sole intention of enriching MDE☆28Updated last year
- Michael Melone's Kusto Query library☆18Updated last year
- Sharing presentation slides and workbook templates that can be useful to others to learn more about Azure Active Directory!☆20Updated 4 months ago