Ajeet Prakash (MSTIC)
|
2cc3982f03
|
Updating the name from “Azure Sentinel” to “Microsoft Sentinel” for Detection and Hunting Queries.
|
2021-11-09 18:41:23 -08:00 |
Pete Bryan
|
a10c26d96c
|
Hunting Query TimeFrame Updates
|
2021-04-15 17:52:25 -07:00 |
Iftekhar Hussain
|
9ac3464878
|
Updated Queries
|
2020-07-29 20:05:49 +05:30 |
|
Iftekhar Hussain
|
5822a35708
|
Merge branch 'master' of https://github.com/Iftekharh/Azure-Sentinel
|
2020-07-21 14:16:41 +05:30 |
|
Iftekhar Hussain
|
662a123690
|
Updated Hunting Queries
Update YAML validated hunting queries as per the guidelines and feedback
|
2020-07-21 14:11:29 +05:30 |
|
Iftekhar Hussain
|
fdf2c8362a
|
Rename Readme.txt to Readme.md
|
2020-07-21 11:29:06 +05:30 |
|
Iftekhar Hussain
|
8973eccbd7
|
Updated hunting queries as per Query Style Guide
|
2020-07-15 14:21:36 +05:30 |
|
Iftekhar Hussain
|
ce828c99ac
|
Create Readme.txt
|
2020-07-15 14:20:25 +05:30 |
|
Iftekhar Hussain
|
af9d0147af
|
Delete SQL-UserRoleChanged.yaml
|
2020-07-15 14:13:47 +05:30 |
|
Iftekhar Hussain
|
9774f0fc01
|
Delete SQL-UserRemovedFromServerRole.yaml
|
2020-07-15 14:13:39 +05:30 |
|
Iftekhar Hussain
|
53a89c2f60
|
Delete SQL-UserRemovedFromSecurityAdmin.yaml
|
2020-07-15 14:13:32 +05:30 |
|
Iftekhar Hussain
|
fd77dffedc
|
Delete SQL-UserDeletedFromDatabase.yaml
|
2020-07-15 14:13:20 +05:30 |
|
Iftekhar Hussain
|
6e0ac59e39
|
Delete SQL-UserAdded_to_SecurityAdmin.yaml
|
2020-07-15 14:13:12 +05:30 |
|
Iftekhar Hussain
|
f58d638cb8
|
Delete SQL-New_UserCreated.yaml
|
2020-07-15 14:13:04 +05:30 |
|
Iftekhar Hussain
|
23edd841ef
|
Delete SQL-MultipleFailedLogon_InShortSpan.yaml
|
2020-07-15 14:12:57 +05:30 |
|
Iftekhar Hussain
|
7547830bcd
|
Delete SQL-MultipleFailedLogon_FromSameIP.yaml
|
2020-07-15 14:12:46 +05:30 |
|
Iftekhar Hussain
|
9513360b42
|
Delete SQL-Failed SQL Logons.yaml
|
2020-07-15 14:12:38 +05:30 |
|
Iftekhar Hussain
|
e2793b9826
|
Rename Failed SQL Logons.yaml to SQL-Failed SQL Logons.yaml
|
2020-07-04 21:37:39 +05:30 |
|
Iftekhar Hussain
|
97850035d8
|
Rename MultipleFailedLogon_FromSameIP.yaml to SQL-MultipleFailedLogon_FromSameIP.yaml
|
2020-07-04 21:37:12 +05:30 |
|
Iftekhar Hussain
|
1a8de9c3eb
|
Rename MultipleFailedLogon_InShortSpan.yml to SQL-MultipleFailedLogon_InShortSpan.yaml
|
2020-07-04 21:36:39 +05:30 |
|
Iftekhar Hussain
|
1d00dda397
|
Rename SQ-UserDeletedFromDatabase.yaml to SQL-UserDeletedFromDatabase.yaml
|
2020-07-04 21:36:00 +05:30 |
|
Iftekhar Hussain
|
4dc98d2373
|
Added detection Queries from the blog post
https://techcommunity.microsoft.com/t5/azure-sentinel/monitoring-sql-server-with-azure-sentinel/ba-p/1502960
|
2020-07-04 21:34:07 +05:30 |
|
Iftekhar Hussain
|
ac098bf69e
|
Delete Failed SQL Logons
|
2020-07-04 21:21:14 +05:30 |
|
Iftekhar Hussain
|
7ca5b5fea7
|
Rename Failed SQL Logons.yml to Failed SQL Logons.yaml
|
2020-07-04 21:20:49 +05:30 |
|
Iftekhar Hussain
|
fbca4ce919
|
Rename SQL-New_UserCreated.yml to SQL-New_UserCreated.yaml
|
2020-07-04 21:20:23 +05:30 |
|
Iftekhar Hussain
|
a5d41b45fd
|
Delete SQL-UserRoleChanged.yml
|
2020-07-04 21:19:56 +05:30 |
|
Iftekhar Hussain
|
5aa088de91
|
Add files via upload
|
2020-07-04 21:15:58 +05:30 |
|
Iftekhar Hussain
|
648c012cc1
|
Create Failed SQL Logons
|
2020-07-04 21:14:29 +05:30 |