Cyb3r-Monk/Threat-Hunting-and-Detection Cyb3r-Monk/Threat-Hunting-and-Detection

  • Stars
    star
    445
  • Rank 98,085 (Top 2 %)
  • Language
    Jupyter Notebook
  • License
    BSD 3-Clause "New...
  • Created about 4 years ago
  • Updated over 1 year ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
Cyb3r-Monk/Threat-Hunting-and-Detection
github

Cyb3r-Monk

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Repository for threat hunting and detection queries, etc. for Defender for Endpoint and Microsoft Sentinel in KQL(Kusto Query Language).

Threat Hunting and Detection

Repository for threat hunting and detection queries, tools, etc.

WARNING!

Whatever you use from the repository, double check its correctness, test it in your environment. Please, DO NOT just copy and paste.

Presenting it as your own is illegal and forbidden. Apart from that, you can use the content anyway you like with a reference to @Cyb3rMonk (Twitter) or Cyb3r-Monk (Github). It is much appreciated.

Want to Support?

If you like my work, have benefited from it, and want to show appreciation, pay it forward

More Repositories

1

RITA-J

Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.
Jupyter Notebook
176
star
2

ACCD

Active C&C Detector
Jupyter Notebook
116
star
3

Cheat-Sheets

Cheat sheets for threat hunting, detection and other stuff.
24
star
4

DefensiveSysmon

Repository for Defensive applications of Windows Sysmon
PowerShell
2
star
5

azure-kql

Azure KQL (Kusto Query Language) tips, tricks and best practices for Threat Hunting, Blue Teaming, etc.
2
star
6

Cyb3rMonk

Whoami
1
star