Repository of automatically generated YARA rules from Malpedia's YARA-Signator with detailed statistics.
Welcome to the unified Microsoft Sentinel and Microsoft 365 Defender repository! This repository contains out of the box detections, exploration queries, hunting queries, workbooks, playbooks and much more to help you get ramped up with Microsoft Sentinel and provide you security content to secure your environment and hunt for threats. The hunting queries also include Microsoft 365 Defender hunting queries for advanced hunting scenarios in both Microsoft 365 Defender and Microsoft Sentinel. You can also submit to issues for any samples or resources you would like to see here as you onboard to Microsoft Sentinel. This repository welcomes contributions and refer to this repository's wiki to get started. For questions and feedback, please contact AzureSentinel@microsoft.com Resources: - Microsoft Sentinel documentation - Microsoft 365 Defender documentation - Security Community Webinars - Getting started with GitHub We value your feedback. Here are some channels to help surface your questions or feedback: - General product specific Q&A for SIEM and SOAR - Join in the Microsoft Sentinel Tech Community conversations - General product specific Q&A for XDR
Repository of automatically generated YARA rules from Malpedia's YARA-Signator with detailed statistics.
A project focusing on understanding and combating threats to the Internet economy and net citizens.
Automatically curate open-source Yara rules and run scans with YAYA.
Repository containing MITRE ATT&CK and CAPEC datasets in STIX 2.0 for cybersecurity threat modeling.
A sophisticated npm attack attributed to North Korean threat actors, targeting technology firms and their employees.
A parsing tool for Yara Scan Service's JSON output file to help maximize benefits and automate parsing of Yara Scan Service results.
