sentinel-attack

https://github.com/edoardogerosa/sentinel-attack

Open Source

Description

Tools to rapidly deploy a threat hunting capability on Azure Sentinel that leverages Sysmon and MITRE ATT&CK

Keywords

azure azure-sentinel blue-team cybersecurity detection kql logging mitre-attack security-tools siem sysmon sysmon-config terraform-azure threat-hunting workbooks

For authorized security testing and educational use only.