The Microsoft Sentinel Triage AssistanT (STAT) enables easy to create incident triage automation in Microsoft Sentinel

PowerShell module for Azure Sentinel

Sentinel Analytics Rule converter PowerShell module

Solution to deploy a Sentinel playground demo environment

Defender Resource Hub

Sentinel Threat Intelligence Upload Toolkit

Development of new Microsoft Sentinel module

HackSmithScripts is a public GitHub repository offering a variety of tools and scripts for hacking, pentesting, red teaming, and vulnerability scanning. Ideal for cybersecurity professionals, penetration testers, and ethical hackers.

Enterprise-grade Business Email Compromise detection for Microsoft 365 - Free & Open Source

Implemented a miniature HoneyNet on Azure, integrating log sources from diverse resources into a Log Analytics workspace.

Scripts to help you get started with your DevOps Repo and Microsoft Sentinel

Sentinel custom watchlist import solution which can be used to work around the watchlist file size limitation of 3.8 MB.

A comprehensive, modular Detection as Code framework for Microsoft Sentinel, deployable through Terraform with centralised configuration and automated documentation.

Contains code related to Azure infrastructure deployment, automation and management"

Set up Azure Sentinel (SIEM) to actively monitor a virtual machine honeypot, capturing live RDP Brute Force attack data from global sources. This project leverages a custom PowerShell script to fetch the geo-location of attackers and dynamically plots them on the Azure Sentinel Map for real-time threat visualization.

Microsoft Sentinel script to extract all Content Hub items for a particular data table

A repo with my presentations

Estimate the Volume of Event Logs on a Windows Machine for example to plan for Microsoft Sentinel ingestion.

Collection of Microsoft Sentinel scripts, queries, and nicknacks

Managing Microsoft Sentinel with Azure Lighthouse