pjrcdf

0

followers

following

stars

pjrcdf's starred repositories

OpenIntuneBaseline

Community-driven baseline to accelerate Intune adoption and learning.

GPL-3.026900

definitive-guide-kql

Sample queries and data as part of the Microsoft Press book, The Definitive Guide to KQL

Intune

Intune related scripts

Language:C#MIT2000

ASRGEN

ASR Configurator, Essentials and Atomic Testing

Language:PythonApache-2.03000

FalconFriday

Hunting queries and detections

BSD-3-Clause68100

Monitor-security-policy-changes-or-admin-activities

1500

365-Stealer

365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Consent Grant Attack.

Language:PHPNOASSERTION41100

mde

Defender for Endpoint

Language:PowerShellGPL-3.01600

MDE-AuditCheck

MDE relies on some of the Audit settings to be enabled

Language:PowerShell9200

KQL_Intune

6800

Defender_Device_Control_Fix

Working on the fix for https://github.com/microsoft/mdatp-devicecontrol/

100

microsoft-365-docs

This repo is used to host the source for the Microsoft 365 documentation on https://docs.microsoft.com.

Language:PowerShellCC-BY-4.092000

Microsoft-365-Defender-Hunting-Queries

Sample queries for Advanced hunting in Microsoft 365 Defender

Language:Jupyter NotebookMIT188100

detections

KQL detection rules

GPL-3.0700

SentinelAutomationModules

The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel

Language:PowerShellMIT20100

awesome-azure-policy

A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon

CC0-1.047700

MDATP

Microsoft Defender Advanced Threat Protection

Language:PowerShell4000

ConditionalAccess

Language:PowerShellMIT25300

Sol-Sentinel

300

MS_Sentinel

Microsoft Sentinel Repo

Language:PowerShell400

Azure_Sentinel

Bulk turn on Analytic rules in Azure Sentinel

Language:Python1400

Sentinel-Queries

Collection of KQL queries

MIT133400

AzureSentinelKQLScripts

Various tools used to monitor and troubleshoot Azure Sentinel data

MIT2700

Device-Security-Guidance-Configuration-Packs

This repository contains policy packs which can be used by system management software to configure device platforms (such as Windows 10 and iOS) in accordance with NCSC device security guidance. These configurations are aimed primarily at government and other medium/large organisations.

Language:ShellApache-2.037900

Microsoft-Sentinel2Go

Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.

Language:PowerShellGPL-3.053300

Sentinel-playground

Solution to deploy a Sentinel playground demo environment

Language:PowerShell5300

KQL_Reference_Manual

3900

Azure-Sentinel

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

Language:Jupyter NotebookMIT437800

Azure-Sentinel-Cost-Troubleshooting-Kit

Guidance and collateral for troubleshooting and managing Azure Sentinel data costs.

2400

AzureSentinelMisc

Miscellaneous Azure Sentinel files that don't fall into other categories.

1000