Pinned Repositories
ContiChatLogsExcel
Chat logs from Conti Leak 2/27 in Easy to use format
CVE-2021-3122-Details
EvtxECMD-RSO-to-DataSet
Use this Script to download and run EvtXCMD on a Windows Endpoint (Using SentinelOne Remote Script Orchestration (RSO)) and parse all event logs to CSV and JSON and ship the results to DataSet.
MalwareSimulations
This Repo Contains some examples of attacker Simulated behaviors you can use to test your AV/EDR/XDR telemetry.
PowerQueries
SentinelOne PowerQueries
RSO-Scripts
Sentinel-One-STAR-Rules-Threat-Hunts
SentinelOne STAR Rules
SentinelOne-Power-Queries
SentinelOne-ThreatHunting-and-XDR-Guide
Beginners Guide to Hunting for Threats
SentinelOne-XDR-Dashboards
acquiredsecurity's Repositories
acquiredsecurity/Sentinel-One-STAR-Rules-Threat-Hunts
SentinelOne STAR Rules
acquiredsecurity/SentinelOne-ThreatHunting-and-XDR-Guide
Beginners Guide to Hunting for Threats
acquiredsecurity/CVE-2021-3122-Details
acquiredsecurity/ContiChatLogsExcel
Chat logs from Conti Leak 2/27 in Easy to use format
acquiredsecurity/EvtxECMD-RSO-to-DataSet
Use this Script to download and run EvtXCMD on a Windows Endpoint (Using SentinelOne Remote Script Orchestration (RSO)) and parse all event logs to CSV and JSON and ship the results to DataSet.
acquiredsecurity/MalwareSimulations
This Repo Contains some examples of attacker Simulated behaviors you can use to test your AV/EDR/XDR telemetry.
acquiredsecurity/PowerQueries
SentinelOne PowerQueries
acquiredsecurity/RSO-Scripts
acquiredsecurity/SentinelOne-Power-Queries
acquiredsecurity/SentinelOne-XDR-Dashboards
acquiredsecurity/test123