There are 3 repositories under kusto topic.
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
Threat Hunting query in Microsoft 365 Defender, XDR. Provide out-of-the-box KQL hunting queries - App, Email, Identity and Endpoint.
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
Microsoft 365 Advanced Hunting Queries with hotlinks that plug the query right into your tenant
In this repository you may find KQL (Kusto Query Language) queries and Watchlist schemes for data sources related to Microsoft Sentinel (a SIEM tool).
example queries for learning the kusto language
Repository with Sentinel Analytics Rules and Hunting Queries
JS SDK for the Kusto service
Quick start. Index multiple documents in a repository using HuggingFace embeddings. Save them in Chroma and / or FAISS for recall. Choose OpenAI or Azure OpenAI APIs to get answers to your questions - Q&A with OpenAI and Azure OpenAI.
Terraform script to deploy almost all Azure Data Services
Samples to use Kusto(Azure Data Explorer) as a Vector database for AI embeddings
A self-contained execution engine for the Kusto Query Language (KQL) written in C#
R interface to Kusto/Azure Data Explorer. Submit issues and PRs at https://github.com/Azure/AzureKusto
R interface to Azure Data Explorer, aka Kusto
Azure Data Explorer (Kusto) gRPC backend for Jaeger Tracing
Application Insights for Unity. Track scene user flow, Unity UI button and Mixed Reality interaction events
Open Log Analytics queries and samples on querying different Azure resources and services. Includes sample Power BI reports
A technical blog about Kusto
Extensions for Finance and Operations (Dynamics 365)
Prometheus exporter for Azure LogAnaylytics (Kusto queries)
This repository contains C# code to synchronize database schemas from Azure Data Explorer (Kusto) to yaml files and back.
Example code for building out Azure Update Management
This repository wraps the KustoSchemaTools into a CLI tool inside a container. This way it can be used as GitHub Action