Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
---|---|---|---|---|---|---|---|---|---|---|
Sentinel Attack | 1,035 | 7 months ago | 12 | mit | HCL | |||||
Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK | ||||||||||
Hunting Queries Detection Rules | 865 | 2 months ago | bsd-3-clause | Python | ||||||
KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules. | ||||||||||
Azurehunter | 626 | a year ago | 3 | mit | PowerShell | |||||
A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365 | ||||||||||
Adaz | 391 | 3 months ago | 16 | HCL | ||||||
:wrench: Deploy customizable Active Directory labs in Azure - automatically. | ||||||||||
Microsoft Sentinel Secops | 211 | 5 months ago | mit | PowerShell | ||||||
Microsoft Sentinel SOC Operations | ||||||||||
Blue Teaming With Kql | 125 | 2 years ago | mit | |||||||
Repository with Sample KQL Query examples for Threat Hunting | ||||||||||
Threat Hunting With Notebooks | 47 | a year ago | Jupyter Notebook | |||||||
Repository with Sample threat hunting notebooks on Security Event Log Data Sources |