microsoft-defender

There are 38 repositories under microsoft-defender topic.

XMuli/windows-defender-close
ToggleGuardian: Windows Defender Close. | 亦极简的电脑管家，一键关闭 Microsoft Defender Anti-Virus。
Language:C++77 4 26
lostzombie/AchillesScript
Disable Windows Defender and Security, completely debloat without remove and broke.
Language:Batchfile74 1 00
tomwechsler/Microsoft_Cloud_Security
Everything about Microsoft Cloud Security!
54 4 010
BenjiSec/AISW
Advanced Interactive Security Workshop
20 3 03
Ditectrev/Microsoft-SC-900-Microsoft-Security-Compliance-and-Identity-Fundamentals-Practice-Tests-Exams-QA
⛳️ PASS: Microsoft SC-900 (Microsoft Security, Compliance, and Identity Fundamentals) by learning based on our Questions & Answers (Q&A) Practice Tests Exams.
11 1 25
francoisfried/Defender-Advanced-Hunting-Queries
KQL queries for Microsoft Defender Advanced Hunting organized around the TTPs of the MITRE ATT&CK framework.
11 2 00
MichaelGrafnetter/defender-asr-admx
Administrative Template (ADMX) for Microsoft Defender Attack Surface Reduction (ASR)
110
Noble-Effeciency13/ChanceOfSecurity
Collection of scripts and importable settings for the Microsoft Suite aligned with my blog
Language:PowerShell7 1 03
deekayen/ansible-role-mde
Deploy Microsoft Defender Endpoint for Linux with Ansible
Language:Python4 2 07
Rob-Strawley/Migrate2MDAV
Automated Migration from 3rd party AV to Microsoft Defender AV
4 2 00
ImKKingshuk/WindowsNinja
WindowsNinja - Unleash the Power of Windows System Information Gathering! 🖥️🕵️✨ Harness the capabilities of WindowsNinja to silently gather detailed information about your Windows system. Analyze your system's defenses, expose configurations. 🕵️‍♂️💻 Dive into the depths of your Windows environment with WindowsNinja.
Language:PowerShell3 1 02
hisashin0728/UnhealthyStateRuleSentinel
This Repository provides detection rule when Recommendation of Microsoft Defender for Cloud state was changed to "Unhealthy".
2 1 00
rbkidea11/microsoft-defender-for-endpoint-openapi
OpenAPI specification for Microsoft Defender for Endpoint API - AI-generated, optimized for Rewst automation platform
2
sherifrahim/Wazuh-SIEM-Defneder-Integrated
Setting Up Wazuh SIEM/XDR Homelab and Integration of Microsoft Defender into it.
2 1 00
T13nn3s/microsoft
Microsoft related PowerShell scripts and KQL queries
Language:PowerShell2 1 00
1kmt/mpcmdrun-restore
This tool is a batch file to restore all quarantined items from the "Quarantine" folder of Microsoft Defender.
Language:Batchfile1 1 00
Accelerynt-Security/AS-Block-Hash-in-Defender
Block File Hashes found in Microsoft Sentinel Incidents in Defender
1 0 01
ECCENTRIX-CA/Microsoft-Defender-for-Cloud-Apps
This article is about Microsoft Defender for Cloud Apps, exploring its functionalities and practical use cases to illuminate how it fortifies cloud security.
1 1 00
epomatti/az-vm-jit
Azure Virtual Machine (VM) with Just-in-Time access
Language:HCL1 2 01
McL0vinn/MicrosoftDefender-Kaseya_IOCs
Simple KQL query that can be run either in MD for Endpoint (Threat hunting or Custom indicator) or in Azure Sentinel (Threat hunting or analytics rule).It's looking for 4 known IOCs related to the Kaseya attack
1 1 00
timosarkar/kql
building worlds largest KQL database
Language:HTML1
vitorallo/KQL-sentinel-mdr-reference
Comprehensive KQL query reference for Microsoft Defender XDR and Azure Sentinel, optimized for Context7 integration
Language:HTML1
0xZunia/Stardust
Stardust is a dashboard linked to Nmap, Jira, Microsoft Defender(partially) & Graph, made to monitor computers healthyness in C#/ASP.NET & BlazorServer.
Language:HTML0 1 00
AptAmoeba/KQL-Threat-Hunting
A collection of Threat Hunting queries I've written for 365 Defender's 'Advanced Threat Hunting'
00
sndnss/.github
Company Profile
0 0 00
Accelerynt-Security/AS-Compromised-Machine-Tagging
Tag machines in Microsoft Defender from a Microsoft Sentinel Incident
0 0
Accelerynt-Security/AS-Incident-Host-Exposure-Level
Add comments containing Microsoft Defender exposure level to Microsoft Sentinel incidents
0 01
Azure-Security-Portfolio/rbac-jit-vm-access
Azure lab demonstrating RBAC and JIT VM access for least-privilege cloud security.
Da20daMyd/KQL-sentinel-mdr-reference
📊 Explore comprehensive KQL documentation for Microsoft Defender XDR and Azure Monitor, optimized for seamless Context7 integration.
Language:HTML
eigenein/mdatp-diagnostic-parser
Parser for Microsoft Defender real-time protection statistics
Language:Rust2 0
EmekaCyberSec/SaintValTech-Homelab
Documentation and configuration examples from my cybersecurity homelab. Projects include SIEM, firewalls, and endpoint monitoring.
fyankov96/agentic-soc-analyst
AI-powered SOC analyst for Azure Sentinel threat hunting with GPT and VirusTotal integration.
Language:Python
gabrielluizbh/OSConfig
Script OSConfig
Language:PowerShell
JanieAbutu/Azure-Security-Project
End-to-end Azure security projects implementing VPN, Microsoft Defender, Conditional Access, and Zero Trust best practices.
melissajoon/Defender-Automated-Incident-Lab
End-to-end security automation using Microsoft Defender, Sentinel, and Logic Apps to detect, respond, and remediate simulated threats.
SaintValTech/saintvaltech-site
SaintValTech business website. Showcases freelance IT & cybersecurity services, portfolio, and contact information.
Language:HTML

microsoft-defender

XMuli/windows-defender-close

lostzombie/AchillesScript

tomwechsler/Microsoft_Cloud_Security

BenjiSec/AISW

Ditectrev/Microsoft-SC-900-Microsoft-Security-Compliance-and-Identity-Fundamentals-Practice-Tests-Exams-QA

francoisfried/Defender-Advanced-Hunting-Queries

MichaelGrafnetter/defender-asr-admx

Noble-Effeciency13/ChanceOfSecurity

deekayen/ansible-role-mde

Rob-Strawley/Migrate2MDAV

ImKKingshuk/WindowsNinja

hisashin0728/UnhealthyStateRuleSentinel

rbkidea11/microsoft-defender-for-endpoint-openapi

sherifrahim/Wazuh-SIEM-Defneder-Integrated

T13nn3s/microsoft

1kmt/mpcmdrun-restore

Accelerynt-Security/AS-Block-Hash-in-Defender

ECCENTRIX-CA/Microsoft-Defender-for-Cloud-Apps

epomatti/az-vm-jit

McL0vinn/MicrosoftDefender-Kaseya_IOCs

timosarkar/kql

vitorallo/KQL-sentinel-mdr-reference

0xZunia/Stardust

AptAmoeba/KQL-Threat-Hunting

sndnss/.github

Accelerynt-Security/AS-Compromised-Machine-Tagging

Accelerynt-Security/AS-Incident-Host-Exposure-Level

Azure-Security-Portfolio/rbac-jit-vm-access

Da20daMyd/KQL-sentinel-mdr-reference

eigenein/mdatp-diagnostic-parser

EmekaCyberSec/SaintValTech-Homelab

fyankov96/agentic-soc-analyst

gabrielluizbh/OSConfig

JanieAbutu/Azure-Security-Project

melissajoon/Defender-Automated-Incident-Lab

SaintValTech/saintvaltech-site