noodlemctwoodle / pf-azure-sentinelLinks
Parse pfSense/OPNSense logs using Logstash, GeoIP tag entities, add additional context to logs, then send to Azure Sentinel for analysis.
☆31Updated 3 years ago
Alternatives and similar repositories for pf-azure-sentinel
Users that are interested in pf-azure-sentinel are comparing it to the libraries listed below
Sorting:
- ☆16Updated 2 years ago
- Automation around Entra ID☆37Updated 6 months ago
- Windows and macOS Hardening Interface to make security more accessible.☆37Updated 3 years ago
- Serverless Local Administrator Password Solution☆27Updated 4 years ago
- Defender for Endpoint☆27Updated 11 months ago
- ☆29Updated last month
- A collection of scripts and works related to Azure Sentinel☆42Updated 2 years ago
- Automated review process for your Azure AD guest accounts.☆17Updated 4 years ago
- Send security notifications to your users when something important happened on their accounts (such as new MFA methods, atypical travels,…☆10Updated 2 years ago
- A modern approach to password rotation for the local administrator account on Windows 10 workstations utilizing Microsoft Endpoint Config…☆11Updated 5 years ago
- PowerShell stuff I work on☆17Updated 2 years ago
- Misc. content for Microsoft Sentinel☆18Updated last year
- A WDAC configuration repository with the sole intention of enriching MDE☆29Updated last week
- AppLocker hardening policies☆25Updated 6 years ago
- A list of Entra ID (Azure AD) Audit event names and the corresponding Microsoft Graph Request Uri☆30Updated 9 months ago
- My PowerShell Stuff☆46Updated 2 weeks ago
- Security-Focused O365 Management and Log Scripts☆62Updated 2 years ago
- Simple GUI for Microsoft Defender for Endpoint API machine actions in PowerShell.☆36Updated 2 years ago
- PowerShell module to manage the Entra ID device-bound passkey feature☆30Updated last year
- ☆13Updated 7 years ago
- The Invoke-TrimarcADChecks.ps1 PowerShell script is designed to gather data from a single domain AD forest based on our similar checks pe…☆54Updated last year
- Create a Word document showing your Sentinel configuration☆13Updated last year
- M365 Security Scripts☆9Updated 4 years ago
- Azure AD Security controls check.☆14Updated 2 years ago
- Links and guidance related to the return on mitigation report in the Microsoft Digital Defense Report☆28Updated last year
- putting all together: customer environment, some threats, azure security services, Microsoft 365 Defender services, Azure monitor service…☆15Updated 3 years ago
- ☆20Updated last year
- REST server that can analyze Kusto KQL queries against the Sentinel and Microsoft 365 Defender schemas.☆36Updated 5 months ago
- Contains Entra Related PowerShell Scripts and Entra Related KQL for Logs in Log Analytics☆2Updated last week
- The cActiveDirectorySecurity module contains PowerShell Functions which are designed to report on and manipulate Access Control Lists on …☆11Updated 6 years ago