Cloud-native SIEM for intelligent security analytics for your entire enterprise.
☆20Apr 4, 2023Updated 2 years ago
Alternatives and similar repositories for Azure-Sentinel
Users that are interested in Azure-Sentinel are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆14Mar 5, 2021Updated 5 years ago
- Repo for Automations and other solutions for Elastic SIEM/Security.☆18Jun 15, 2021Updated 4 years ago
- Nano meterpreter shell based on TinyMet☆28Aug 27, 2016Updated 9 years ago
- Checks observables/ioc in TheHive/Cortex against the MISP warningslists☆14Dec 27, 2017Updated 8 years ago
- Additional Resources to improve Customer Experience with Azure Advanced Threat Protection☆22Jun 12, 2023Updated 2 years ago
- ☆18Jul 13, 2022Updated 3 years ago
- Hunting Malicious Macros SANS Threathunting Summit 2021 Materials☆39Oct 9, 2021Updated 4 years ago
- Point of Concept: To help to automate the collection of evidence for SOC 2 Audits and etc.☆11May 13, 2024Updated last year
- Generates runbooks for GuardDuty findings☆38Jun 24, 2024Updated last year
- Rapid Response sample Foundry app☆17Mar 16, 2026Updated last week
- Powershell module for Microsoft Cloud App Security☆86Aug 29, 2023Updated 2 years ago
- All about Microsoft 365 Enterprise Mobility + Security (EMS)☆25Dec 3, 2023Updated 2 years ago
- Axonius API Library for Python☆22Jan 8, 2026Updated 2 months ago
- Disk Image Mounting Script☆11Jan 22, 2026Updated 2 months ago
- This script gets all accepted domains in Microsoft 365 using autodiscover, gets the tenant name and checks if there is a Microsoft Defend…☆23May 27, 2024Updated last year
- Thor Artifacts for Velociraptor☆19Dec 2, 2025Updated 3 months ago
- Defender for Endpoint☆18Mar 11, 2024Updated 2 years ago
- A PoC that uses the DirSync protocol to poll Active Directory for changes☆13Aug 16, 2020Updated 5 years ago
- A GitHub action that organizes your post-mortems☆17Oct 12, 2022Updated 3 years ago
- Event forwarder for CrowdStrike Falcon☆11Jan 16, 2024Updated 2 years ago
- CrowdStrike Falcon log forwarder from falcon S3 bucket to your S3 bucket☆11Apr 15, 2021Updated 4 years ago
- Notes from my "Implementing a Kick-Butt Training Program: Blue Team GO!" talk☆14Mar 4, 2019Updated 7 years ago
- ☆34May 18, 2023Updated 2 years ago
- Arduino attiny support files for nRF24L01 RF modules☆39Aug 11, 2013Updated 12 years ago
- Scripts to for ready-to-use Velociraptor instance deployment in Azure☆14Jun 27, 2023Updated 2 years ago
- Generate users with "random-ish" realistic passwords or password hashes☆18Jun 24, 2016Updated 9 years ago
- ☆10Jan 13, 2021Updated 5 years ago
- ☆12Updated this week
- Curated AI prompts for Microsoft architects and engineers to accelerate solution discovery and prototyping with customers — from use case…☆32Sep 3, 2025Updated 6 months ago
- What's in the black box? As we go forward we will need a model and machine readable bill of materials.☆13Oct 17, 2023Updated 2 years ago
- Free incident cyber response plan template☆49Aug 19, 2025Updated 7 months ago
- A YARA & Malware Analysis Toolkit written in Rust.☆103Updated this week
- CRUSOE: A Toolset for Cyber Situational Awareness and Decision Support in Incident Handling Inspired by the OODA Loop☆15Dec 11, 2024Updated last year
- Azure Databricks workshops with content on connectivity to Azure services, data engineering workflows and data sciences notebooks.☆11Feb 20, 2019Updated 7 years ago
- ☆19Nov 23, 2022Updated 3 years ago
- ☆19Apr 16, 2021Updated 4 years ago
- F-Secure Lightweight Acqusition for Incident Response (FLAIR)☆16Jul 5, 2021Updated 4 years ago
- TheHiveIRPlaybook is a collection of TheHive case templates used for Incident Response☆13Jul 13, 2020Updated 5 years ago
- This project is just a dumping ground for random scripts I've developed.☆139Aug 14, 2024Updated last year