"topic:microsoft-xdr" — Search

3 results for “topic:microsoft-xdr”

A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

76394Updated 20 hours ago

kqlkustokusto-querykusto-query-languagemicrosoftmicrosoft-365microsoft-365-defendermicrosoft-365-securitymicrosoft-securitymicrosoft-sentinelmicrosoft-xdrmicrosoftxdrsecuritysecuritycentersentinelthreat-detectingthreat-detectionthreat-huntthreat-hunting

xpinux/Project-SABER

Project-SABER: A repository of KQL queries and parsers for threat hunting, threat detection, and log parsing in Microsoft Sentinel & Microsoft XDR (formerly Microsoft 365 Defender)

32Updated 2 weeks ago

analytics-rulesblue-teamcommonsecuritylogcybersecuritydetection-engineeringhunting-queriesincident-responsekqllog-parsinglogstashmicrosoft-sentinelmicrosoft-xdrparserssentinelsiemsocsyslogthreat-hunting

jaraguayo/KQL-Queries

KQL-Queries 🐙 provides ready KQL scripts for Microsoft Defender XDR threat hunting, helping security teams detect, investigate, and respond to threats.

10Updated 1 hour ago

blueteamdefenderxdrdfirhuntingkustokusto-languagemdemdimicrosoft-365-defendermicrosoft-securitymicrosoft-xdrmispmitre-attacksecuritycentersentinelthreat-huntthreatdetectionvulnerability-management