KQL Queries. Microsoft Defender, Microsoft Sentinel
-
Updated
Aug 25, 2025 - JavaScript
#
defenderxdr
Here are 8 public repositories matching this topic...
KQL Queries. Microsoft Defender, Microsoft Sentinel
security azure detection sentinel dfir hunting azuread kql defenderforendpoint defenderforidentity entraid defenderxdr
-
Updated
Aug 29, 2025
A set of importable Intune policies that simplify onboarding/offboarding MacOS devices to/from Defender for Business/Endpoint.
macos mac defender endpoint intune endpoint-security defender-atp defender-for-endpoint endpoint-management defenderxdr
-
Updated
Aug 18, 2025
This repository contains a selection of Kusto Query Language (KQL) queries designed for proactive threat hunting. Aligned with the MITRE ATT&CK framework, these queries are crafted to detect and address potential threats effectively.
-
Updated
Aug 1, 2025
KQL Library provides a clean, intuitive interface for security professionals to search and copy kusto queries. Featuring category-based organization and instant search capabilities.
-
Updated
Apr 14, 2025 - TypeScript
Microsoft Defender XDR threat hunting KQL queries
microsoft azure threat sentinel defender threat-hunting threat-intelligence mitre-attack threat-detection kql threathunting defenderxdr
-
Updated
Aug 21, 2025
KQL-Queries 🐙 provides ready KQL scripts for Microsoft Defender XDR threat hunting, helping security teams detect, investigate, and respond to threats.
sentinel dfir misp hunting vulnerability-management mde blueteam mdi mitre-attack securitycenter kusto kusto-language threat-hunt threatdetection microsoft-security microsoft-365-defender microsoft-xdr defenderxdr
-
Updated
Aug 14, 2025
🛡️ Simplify onboarding and offboarding of MacOS devices with importable Intune policies for Defender for Business and Endpoint.
macos defender endpoint intune endpoint-security defender-atp defender-for-endpoint endpoint-management defenderxdr
-
Updated
Aug 26, 2025
Improve this page
Add a description, image, and links to the defenderxdr topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the defenderxdr topic, visit your repo's landing page and select "manage topics."