An automation framework for deploying Microsoft Sentinel environments using pipelines. This project combines infrastructure-as-code (Bicep) with PowerShell automation to streamline the deployment of Sentinel solutions, analytics rules, and workbooks.
☆58Jun 3, 2026Updated 3 weeks ago
Alternatives and similar repositories for Sentinel-As-Code
Users that are interested in Sentinel-As-Code are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Automated security investigation tool using Microsoft MCP Servers, GitHub Copilot, Python Modules and custom copilot-instructions.☆214Updated this week
- ☆38Mar 2, 2026Updated 3 months ago
- ☆30May 1, 2025Updated last year
- Utilities for Microsoft Sentinel☆20Dec 7, 2025Updated 6 months ago
- Manage and maintain Defender XDR custom collection configuration☆39Nov 19, 2025Updated 7 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Copilot for Security Tools☆19Apr 19, 2024Updated 2 years ago
- ☆71Apr 20, 2026Updated 2 months ago
- An automated deployment tool that creates instrumented Azure environments with vulnerable systems for simulating attacks and testing Micr…☆65Mar 30, 2026Updated 3 months ago
- Troubleshooting MDE Workstations☆44Jun 19, 2026Updated last week
- Sentinel Analytics Rule converter PowerShell module☆70Feb 24, 2026Updated 4 months ago
- The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel☆284Jan 2, 2026Updated 5 months ago
- KustoHawk is a lightweight incident triage and response tool designed for effective incident response in Microsoft Defender XDR and Micro…☆157Apr 1, 2026Updated 2 months ago
- ADXFlowmaster helps SecOps teams Threat Hunt suspicious network traffic inside & outside of Azure.☆39Oct 30, 2024Updated last year
- My stuff regarding Copilot for Security☆12Jan 12, 2026Updated 5 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ClientInspectorV2 - Unleashing the power of Azure LogAnalytics, Azure Data Collection Rules, Log Ingestion API by doing client inventory …☆26Apr 28, 2023Updated 3 years ago
- Sentinel Logic Apps, Playbooks and Workbooks to automate enrichment, incident analysis and more.☆122Jan 18, 2026Updated 5 months ago
- Share Information about Microsoft Security Products☆105Updated this week
- ☆48Feb 12, 2026Updated 4 months ago
- ☆40Sep 29, 2021Updated 4 years ago
- AzLogDcrIngestPS - Unleashing the power of Log Ingestion API with Azure LogAnalytics custom table v2, Azure Data Collection Rules and Azu…☆35May 25, 2026Updated last month
- Repository of scripts and so on from my blog https://blog.sonnes.cloud. Scripts for Microsoft 365, Entra ID, Active Directory, Windows OS…☆34Apr 22, 2026Updated 2 months ago
- ☆46Apr 6, 2026Updated 2 months ago
- A platform for extracting and shipping security value from your data lake to Sentinel.☆36Sep 19, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A lightning fast tool to automatically deploy Purview in a super fast at the click of a button. Clone the repo, execute the scripts, wait…☆14Oct 22, 2021Updated 4 years ago
- Azure OpenAI Playbook created for Microsoft Sentinel☆14May 2, 2024Updated 2 years ago
- Miscellaneous stuff I create☆72Apr 21, 2026Updated 2 months ago
- PowerShell-based Windows Server Security Audit Engine by Cyb3rint3l Labs. Measures alignment with the NIS2 directive and maps findings to…☆46Feb 1, 2026Updated 4 months ago
- An Azure periodic table application with service descriptions, naming rules and restrictions, infrastructure as code links, and direct ac…☆62Feb 12, 2025Updated last year
- ☆38Updated this week
- ☆18Jul 13, 2022Updated 3 years ago
- A PowerShell GUI tool for efficiently managing and offboarding devices from Microsoft Intune, Autopilot, and Entra ID, featuring bulk ope…☆251Jun 10, 2026Updated 3 weeks ago
- This repository contains a comprehensive set of Conditional Access (CA) policies and PowerShell management tools for Microsoft Entra ID (…☆105Jun 22, 2026Updated last week
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆36Mar 23, 2024Updated 2 years ago
- ☆12Dec 6, 2021Updated 4 years ago
- Discover a curated collection of scripts for Microsoft Azure and Microsoft 365 in this repository. Tailored for efficiency and automation…☆39Oct 21, 2025Updated 8 months ago
- Collection of Windows Scripts and Automation to make management and MSP life easier☆17Apr 8, 2026Updated 2 months ago
- ☆10Mar 3, 2023Updated 3 years ago
- PowerShell-based Automation of Defender for Endpoint☆195Jul 3, 2025Updated 11 months ago
- Making the end-user experience of Entra ID PIM slightly easier.☆17Jun 15, 2026Updated 2 weeks ago