This repository is a curated collection of Kusto Query Language (KQL) queries built during my experience as a SOC analyst in primarily a Microsoft environment. These queries aim to assist in the triage and analysis of security logs, events, and alerts, facilitating faster and more effective responses to potential threats. References to query creators will be included in the query page if I do not create them myself.
-
Notifications
You must be signed in to change notification settings - Fork 0
teznadzn/KQLQueries
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
About
Curated collection of Kusto Query Language (KQL) queries built during my experience as a SOC analyst in primarily a Microsoft environment.
Topics
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published