microsoft-sentinel
Here are 40 public repositories matching this topic...
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
-
Updated
May 23, 2024
Revoke Entra ID user sessions from Microsoft Sentinel incidents
-
Updated
May 20, 2024
Revoke Entra ID user sessions from Microsoft Sentinel entities
-
Updated
May 20, 2024
Microsoft Sentinel / Azure Open AI 演習のレポジトリです。
-
Updated
May 20, 2024
The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
-
Updated
May 22, 2024 - PowerShell
A collection of various SIEM rules relating to malware family groups.
-
Updated
Apr 24, 2024 - YARA
Managing Microsoft Sentinel with Azure Lighthouse
-
Updated
Apr 22, 2024 - PowerShell
App to ingest Threat Intelligence (TI) into a Firewall
-
Updated
Apr 16, 2024 - C#
⛳️ PASS: Microsoft Azure AZ-500 (Azure Security Engineer Associate) by learning based on our Questions & Answers (Q&A) Practice Tests Exams.
-
Updated
Apr 11, 2024
Block File Hashes found in Microsoft Sentinel Incidents in Defender
-
Updated
Feb 6, 2024
Ian Hanley's deceptively simple KQL queries.
-
Updated
Jan 24, 2024
Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).
-
Updated
Jan 1, 2024 - Jupyter Notebook
This repository contains all the presentations, demo's, videos and other resources that we use during our community events.
-
Updated
Dec 13, 2023
Enable Azure AD user accounts from Microsoft Sentinel account entities
-
Updated
Dec 6, 2023
Disable Azure AD user accounts from Microsoft Sentinel account entities
-
Updated
Dec 6, 2023
Microsoft Sentinel SOC Operations
-
Updated
Oct 29, 2023 - PowerShell
Sign out Google users from Microsoft Sentinel incidents
-
Updated
Sep 16, 2023 - Python
Improve this page
Add a description, image, and links to the microsoft-sentinel topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the microsoft-sentinel topic, visit your repo's landing page and select "manage topics."