4 results found Sort:

netevert
sentinel-attack netevert
208
1.0k
mit
71
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK
kql siem azure sysmon logging blue-team detection workbooks mitre-attack cybersecurity sysmon-config azure-sentinel security-tools threat-hunting terraform-azure
Created 2019-05-30
313 commits to master branch, last one 9 months ago
eshlomo1
Microsoft-Sentinel-SecOps eshlomo1
59
231
mit
12
Microsoft Sentinel SOC Operations
ir soc siem azure secops hunting security microsoft cloudsecurity azure-sentinel threat-hunting incident-response microsoft-sentinel threat-intelligence
Created 2020-02-27
362 commits to master branch, last one 8 months ago
briandelmsft
SentinelAutomationModules briandelmsft
54
198
mit
10
The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
sentinel automation sample-code azuresentinel cybersecurity azure-sentinel microsoft-sentinel
Created 2021-10-13
708 commits to main branch, last one a day ago
ashwin-patil
blue-teaming-with-kql ashwin-patil
38
194
mit
10
Repository with Sample KQL Query examples for Threat Hunting
kql siem azure security blueteaming loganalytics azure-sentinel threat-hunting azure-data-explorer
Created 2020-10-23
17 commits to main branch, last one about a year ago