Search Results - RepositoryStats

Hunting-Queries-Detection-Rules Bert-JanP

235

1.3k

bsd-3-clause

65

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

kql mde mdi dfir misp azure infosec blueteam security sentinel zero-day cybersecurity threat-hunting defender-for-endpoint vulnerability-management

Created 2022-05-30

390 commits to main branch, last one a day ago

FalconFriday FalconForceTeam

80

734

bsd-3-clause

57

Hunting queries and detections

kql hunting blueteam sentinel purpleteam defender-atp defender-for-endpoint

Created 2020-08-04

99 commits to main branch, last one 2 months ago

Threat-Hunting-and-Detection Cyb3r-Monk

102

646

bsd-3-clause

29

Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).

kql dfir cybersecurity kusto-language threat-hunting threat-detection microsoft-sentinel defender-for-endpoint detection-engineering

Created 2020-11-02

25 commits to main branch, last one 11 days ago

MDATP alexverboon

59

455

mit

33

MDATP

kql blogs learning threathunting defender-for-endpoint defender-for-identity microsoft-defender-xdr defender-for-cloud-apps defender-for-office-365

This repository has been archived (exclude archived)

Created 2019-06-15

208 commits to master branch, last one 4 months ago

AdvancedHuntingQueries lawndoc

16

111

unlicense

5

Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant

kql xdr kusto hunting defender security detection microsoft defender-atp microsoft365 cybersecurity cyber-security threat-hunting defender-for-endpoint detection-engineering

Created 2021-08-13

140 commits to main branch, last one 3 months ago

RemoteManagementMonitoringTools jischell-msft

8

81

mit

2

Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations

kql mde rmm security threat-hunting remotemanagement defender-for-endpoint

Created 2023-10-17

85 commits to main branch, last one 4 months ago

ASRGEN MHaggis

5

36

apache-2.0

2

ASR Configurator, Essentials and Atomic Testing

asr windows defender-for-endpoint attack-surface-reduction

Created 2023-11-16

66 commits to main branch, last one about a month ago

IntuneCustomCompliance alexverboon

6

25

mit

1

Microsoft Intune Custom Compliance

json security-audit microsoft-intune powershell-script compliance-profiles defender-for-endpoint

Created 2024-03-17

6 commits to main branch, last one 8 months ago