pjrcdf's starred repositories
OpenIntuneBaseline
Community-driven baseline to accelerate Intune adoption and learning.
definitive-guide-kql
Sample queries and data as part of the Microsoft Press book, The Definitive Guide to KQL
FalconFriday
Hunting queries and detections
365-Stealer
365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Consent Grant Attack.
MDE-AuditCheck
MDE relies on some of the Audit settings to be enabled
Defender_Device_Control_Fix
Working on the fix for https://github.com/microsoft/mdatp-devicecontrol/
microsoft-365-docs
This repo is used to host the source for the Microsoft 365 documentation on https://docs.microsoft.com.
Microsoft-365-Defender-Hunting-Queries
Sample queries for Advanced hunting in Microsoft 365 Defender
detections
KQL detection rules
SentinelAutomationModules
The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel
awesome-azure-policy
A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon
MS_Sentinel
Microsoft Sentinel Repo
Azure_Sentinel
Bulk turn on Analytic rules in Azure Sentinel
Sentinel-Queries
Collection of KQL queries
AzureSentinelKQLScripts
Various tools used to monitor and troubleshoot Azure Sentinel data
Device-Security-Guidance-Configuration-Packs
This repository contains policy packs which can be used by system management software to configure device platforms (such as Windows 10 and iOS) in accordance with NCSC device security guidance. These configurations are aimed primarily at government and other medium/large organisations.
Microsoft-Sentinel2Go
Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.
Sentinel-playground
Solution to deploy a Sentinel playground demo environment
Azure-Sentinel
Cloud-native SIEM for intelligent security analytics for your entire enterprise.
Azure-Sentinel-Cost-Troubleshooting-Kit
Guidance and collateral for troubleshooting and managing Azure Sentinel data costs.
AzureSentinelMisc
Miscellaneous Azure Sentinel files that don't fall into other categories.