4 results found Sort:

netevert
sentinel-attack netevert
209
1.1k
mit
72
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
kql siem azure sysmon logging blue-team detection workbooks mitre-attack cybersecurity sysmon-config azure-sentinel security-tools threat-hunting terraform-azure
Created 2019-05-30
321 commits to master branch, last one about a month ago
eshlomo1
Microsoft-Sentinel-SecOps eshlomo1
63
241
mit
13
Microsoft Sentinel SOC Operations
ir soc siem azure secops hunting security microsoft cloudsecurity azure-sentinel threat-hunting incident-response microsoft-sentinel threat-intelligence
Created 2020-02-27
368 commits to master branch, last one 5 months ago
briandelmsft
SentinelAutomationModules briandelmsft
56
225
mit
10
The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
sentinel automation sample-code azuresentinel cybersecurity azure-sentinel microsoft-sentinel
Created 2021-10-13
723 commits to main branch, last one 12 days ago
ashwin-patil
blue-teaming-with-kql ashwin-patil
36
202
mit
11
Repository with Sample KQL Query examples for Threat Hunting
kql siem azure security blueteaming loganalytics azure-sentinel threat-hunting azure-data-explorer
Created 2020-10-23
17 commits to main branch, last one 2 years ago