Microsoft Defender XDR - Resource Hub
-
Updated
Jan 4, 2024 - PowerShell
Microsoft Defender XDR - Resource Hub
A collection of sample dashboards, custom labels, mustaches, SQL scripts and PowerShell scripts to help you get the most out of SquaredUp. #community-powered
Collection of Remote Management Monitoring tool artifacts, for assisting forensics and investigations
CyberThreat Monitor (SIEM Lab) with Microsoft Azure is a comprehensive threat monitoring solution built on Azure Sentinel, providing real-time visibility into global cyber threats.
This repo contains content which ist related to my blog https://hoferlabs.ch/.
Defender XDR Advanced Hunting Queries (MDE, MDAV, Device Discovery)
Sample files shared at the architect day(s) 19th-20th of November
Implemented a miniature HoneyNet on Azure, integrating log sources from diverse resources into a Log Analytics workspace.
Microsoft related PowerShell scripts and KQL queries
Azure Resource Graph learnings with Azure PowerShell, Azure CLI and VS Code
PowerShell Module that extracts data from Microsoft Azure using ARG KQL queries running in PowerShell. The extracted data can be exported to CSV, Excel, JSON reports, mitigating the maximum rows limitation of ARG Explorer on Azure.
Add a description, image, and links to the kql topic page so that developers can more easily learn about it.
To associate your repository with the kql topic, visit your repo's landing page and select "manage topics."