microsoft-sentinel-workbook

Here are 2 public repositories matching this topic...

Shriya-Commits / Microsoft-Sentinel-Threat-Detection

Cloud-based SOC environment using Microsoft Sentinel, Azure Arc, KQL, and Windows Security Events for threat detection and incident monitoring.

siem soar data-connectors threat-detection alert-rules incident-reporting azure-arc threat-monitoring microsoft-sentinel data-collection-rules log-analytics-workspace kql-queries microsoft-sentinel-workbook

Updated May 8, 2026

annKimani-ICS / Sentinel-SOC-Homelab

Star

A Microsoft Sentinel SOC homelab in Azure, where I built and validated a basic cloud SOC workflow: data onboarding, detection, investigation, and visualization. It demonstrates practical blue-team skills in SIEM operations, KQL-based threat hunting, watchlist enrichment, and workbook reporting.

microsoft-azure microsoft-sentinel kql-threathunting incident-triage soc-analysis microsoft-sentinel-workbook incident-logging microsoft-sentinel-kql

Updated Jun 2, 2026

Improve this page

Add a description, image, and links to the microsoft-sentinel-workbook topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the microsoft-sentinel-workbook topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly