LeoDarke46

LeoDarke46's Stars

• BlueCyberCat/KQL-Hunting-Queries

  My own Microsoft KQL Advanced Hunting Queries for Defender for Endpoint

  2

• gh-andrem/DefenderXDR-AdvancedHunting

  Defender XDR Advanced Hunting Queries (MDE, MDAV, Device Discovery)

  Language:PowerShell8

• dhe365/M365-Defender-Advanced-Hunting

  M365 Advanced Hunting Queries

  7

• m4nbat/KustQueryLanguage_kql

  Cyber Defence related kusto queries for use in Azure Sentinel and Defender advanced hunting

  Language:Batchfile572

• gmellini/Microsoft-Defender-Security-Center-Hunting-Queries

  Hunting Queries for Microsoft Defender Security Center https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/advanced-hunting-overview

  366

• Bert-JanP/Hunting-Queries-Detection-Rules

  KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

  Language:Python1.3k235

• microsoft/Microsoft-365-Defender-Hunting-Queries

  Sample queries for Advanced hunting in Microsoft 365 Defender

  Language:Jupyter Notebook1.9k540

• Cloud-Architekt/AzureSentinel

  Sharing my KQL queries for Azure Sentinel

  Language:PowerShell14231

• microsoft/KqlTools

  A command line tool to explore real-time streams of events.

  Language:C#8020