Disable Azure AD user accounts from Microsoft Sentinel account entities
-
Updated
Dec 6, 2023
Disable Azure AD user accounts from Microsoft Sentinel account entities
This workspace contains all the code (ARM templates and PowerShell) referenced inside my Medium article about the Sentinel Workspace Manager.
Pull Edgescan assets, hosts, and vulnerabilities into Microsoft Sentinel custom logs
Extract domains from Microsoft Sentinel incidents and add them to a Zscaler custom URL category
Azure Active Directory Identity Protection Custom Rule for Microsoft Sentinel
Microsoft Sentinel rules for Azure CIS Benchmark Ver.1.4.0
Add IPs from Microsoft Sentinel Incidents to an Okta Network Zone Blocklist
Disable Azure AD user accounts from Microsoft Sentinel incidents
Enable Azure AD user accounts from Microsoft Sentinel incidents
Content supporting the Microsoft hands-on at DSAG Technology Days March 2023
Revoke Entra ID user sessions from Microsoft Sentinel entities
Block File Hashes found in Microsoft Sentinel Incidents in Defender
Tag machines in Microsoft Defender from a Microsoft Sentinel Incident
Microsoft Sentinel fork of Adaz 🔧 Deploy customizable Active Directory labs in Azure - automatically.
App to ingest Threat Intelligence (TI) into a Firewall
Run Spiderfoot scans on account entities from Microsoft Sentinel incidents
Welcome to the Cloud Security Toolkit repository, your all-in-one destination for cutting-edge cloud security resources! Whether you're diving into offensive strategies, mastering threat hunting, or bolstering your blue-team defenses, this repo has you covered.
Block GitHub users from Microsoft Sentinel incidents
Add a description, image, and links to the microsoft-sentinel topic page so that developers can more easily learn about it.
To associate your repository with the microsoft-sentinel topic, visit your repo's landing page and select "manage topics."