PowerShell module for Azure Sentinel
-
Updated
Aug 3, 2022 - PowerShell
PowerShell module for Azure Sentinel
The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
Development of new Microsoft Sentinel module
Implemented a miniature HoneyNet on Azure, integrating log sources from diverse resources into a Log Analytics workspace.
Set up Azure Sentinel (SIEM) to actively monitor a virtual machine honeypot, capturing live RDP Brute Force attack data from global sources. This project leverages a custom PowerShell script to fetch the geo-location of attackers and dynamically plots them on the Azure Sentinel Map for real-time threat visualization.
Scripts to help you get started with your DevOps Repo and Microsoft Sentinel
Managing Microsoft Sentinel with Azure Lighthouse
Add a description, image, and links to the sentinel topic page so that developers can more easily learn about it.
To associate your repository with the sentinel topic, visit your repo's landing page and select "manage topics."