Sample queries for Advanced hunting in Microsoft 365 Defender
I always find myself going back to my colleague Michael's Tracking the Adversary 4 part webcast where it takes you from 100 to 400 level in the context of threat hunting: https://github.com/microsoft/Microsoft-365-Defender-Hunting-Queries/tree/master/Webcasts/TrackingTheAdversary
Workflow assistant built for devs & their teams. Automate the mundane part of your day, with live actionable messages for your GitHub & Jira tasks.
Defender Advance Hunting
1 project | reddit.com/r/cybersecurity | 30 Nov 2022
Must have analytic rules
3 projects | reddit.com/r/AzureSentinel | 15 Jun 2022
New user question - Hunting cookbook?
1 project | reddit.com/r/DefenderATP | 16 May 2022
Advance Threat Hunting 101
1 project | reddit.com/r/DefenderATP | 7 May 2022
How to monitor for ransomware attacks?
1 project | reddit.com/r/sysadmin | 3 Jan 2022