4 results found Sort:

netevert
sentinel-attack netevert
207
1.1k
mit
71
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
kql siem azure sysmon logging blue-team detection workbooks mitre-attack cybersecurity sysmon-config azure-sentinel security-tools threat-hunting terraform-azure
Created 2019-05-30
313 commits to master branch, last one about a year ago
eshlomo1
Microsoft-Sentinel-SecOps eshlomo1
63
240
mit
13
Microsoft Sentinel SOC Operations
ir soc siem azure secops hunting security microsoft cloudsecurity azure-sentinel threat-hunting incident-response microsoft-sentinel threat-intelligence
Created 2020-02-27
368 commits to master branch, last one 4 months ago
briandelmsft
SentinelAutomationModules briandelmsft
58
215
mit
10
The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
sentinel automation sample-code azuresentinel cybersecurity azure-sentinel microsoft-sentinel
Created 2021-10-13
716 commits to main branch, last one 5 days ago
ashwin-patil
blue-teaming-with-kql ashwin-patil
36
203
mit
11
Repository with Sample KQL Query examples for Threat Hunting
kql siem azure security blueteaming loganalytics azure-sentinel threat-hunting azure-data-explorer
Created 2020-10-23
17 commits to main branch, last one 2 years ago