There are 0 repository under defender-atp topic.
Hunting queries and detections
Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant
Hunting Queries for Defender ATP
Add-on to onboard telemetry data via Microsoft Defender ATP hunting API in Splunk (ES)
A PowerShell module to interact with Microsoft's Defender for Endpoint API.
Deploy Microsoft Defender Endpoint for Linux with Ansible
Use KQG and generate Kusto scripts | Used with Defender ATP
Custom made Query which you can run in your Microsoft Defender - Advanced Hunting tool to look for network activity related to Egregor Ransomware.
PowerShell for Threat Management Explorer