Pinned Repositories
SOCEntityTriageWorkbook
The SOC Entity Triage workbook is designed to enhance the triage process for security operation centers (SOCs) by providing a comprehensive and interactive analysis tool within Azure Sentinel. This workbook aims to streamline the investigation of entities such as IP addresses, hostnames, AD users, and email accounts,.
KQLQueries
Curated collection of Kusto Query Language (KQL) queries built during my experience as a SOC analyst in primarily a Microsoft environment.
SOCAlertAnalysisWorkbook
This Azure Sentinel workbook is designed to monitor and analyze security alerts across multiple workspaces
blog
teznadzn
Personal repo
teznadzn.github.io
tresscross's Repositories
tresscross/blog
tresscross/teznadzn.github.io
tresscross/teznadzn
Personal repo
tresscross/KQLQueries
Curated collection of Kusto Query Language (KQL) queries built during my experience as a SOC analyst in primarily a Microsoft environment.
tresscross/SOCAlertAnalysisWorkbook
This Azure Sentinel workbook is designed to monitor and analyze security alerts across multiple workspaces
tresscross/SOCEntityTriageWorkbook
The SOC Entity Triage workbook is designed to enhance the triage process for security operation centers (SOCs) by providing a comprehensive and interactive analysis tool within Azure Sentinel. This workbook aims to streamline the investigation of entities such as IP addresses, hostnames, AD users, and email accounts,.