microsoft-365-defender

Here are 3 public repositories matching this topic...

cyb3rmik3 / KQL-threat-hunting-queries

A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).

microsoft security sentinel threat-hunting threat-detection securitycenter kusto kql threat-hunt microsoft-365 kusto-query-language microsoft-security microsoft-sentinel kusto-query microsoft-365-security microsoft-365-defender threat-detecting microsoft-xdr microsoftxdr

Updated Aug 28, 2025

jaraguayo / KQL-Queries

Star

KQL-Queries 🐙 provides ready KQL scripts for Microsoft Defender XDR threat hunting, helping security teams detect, investigate, and respond to threats.

sentinel dfir misp hunting vulnerability-management mde blueteam mdi mitre-attack securitycenter kusto kusto-language threat-hunt threatdetection microsoft-security microsoft-365-defender microsoft-xdr defenderxdr

Updated Nov 4, 2025

Juanjo9471 / KQL-Queries-Defender-Sentinel

Star

🔍 Discover KQL queries designed for Microsoft Sentinel and Defender XDR to enhance your security monitoring and incident response capabilities.

microsoft cybersecurity defender threat-hunting misp hunting vulnerability-management mde blueteam zero-day mitre-attack threat-detection kusto threathunting detection-engineering threatdetection defender-for-endpoint microsoft-365-defender

Updated Nov 3, 2025

Improve this page

Add a description, image, and links to the microsoft-365-defender topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the microsoft-365-defender topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly