KQL Search
Search engine for KQL Queries
Azure Service I Ps
Author: Rod TrentReleased: 4/24/2024
Sentinel Analytics Rule New CISA Know Exploited Vulnerability Added
Author: Bert-Jan PalsReleased: 4/23/2024
App Traces App Service Failures
Author: Jose Sebastián CanósReleased: 4/22/2024
MDE AIP Client
Author: Alex VerboonReleased: 4/21/2024
D4IOT Io T Malware Detected
Author: Alex VerboonReleased: 4/21/2024
D4IOT Io T PLC Operating Mode
Author: Alex VerboonReleased: 4/21/2024
D4IOT FTP Authentication Failure
Author: Alex VerboonReleased: 4/21/2024
D4IOT Malicious Name Queries Detection
Author: Alex VerboonReleased: 4/21/2024
Graph API Suspicious User Requests
Author: Bert-Jan PalsReleased: 4/21/2024
User Enrichment
Author: Bert-Jan PalsReleased: 4/20/2024
Collect Incident Statistics
Author: Bert-Jan PalsReleased: 4/19/2024
Minimum Characters For Pim Activation Justification
Author: Michalis MichalosReleased: 4/13/2024
Parsing Wiz Issues
Author: Jose Sebastián CanósReleased: 4/11/2024
List AD Delegations
Author: Bert-Jan PalsReleased: 4/7/2024
Azure AD Depreicated Power Shell Module
Author: Alex VerboonReleased: 4/5/2024
DCA Extract Phone Number
Author: Matt ZorichReleased: 4/4/2024
Table Data
Author: Rod TrentReleased: 4/4/2024
Data Per Computer
Author: Rod TrentReleased: 4/4/2024
Parse Ipv4 Malfunction
Author: Jose Sebastián CanósReleased: 4/3/2024
Dns Events DNS Query Resolved To Palo Alto Networks Sinkhole
Author: Jose Sebastián CanósReleased: 4/2/2024
AWS Cloud Trail AWS S3 Object Encrypted With External Key
Author: Jose Sebastián CanósReleased: 4/1/2024
Inbound SSH Connection To Vulnerable XZ Machine
Author: Bert-Jan PalsReleased: 3/30/2024
CVE 2024 3094 Internet Facing Devices
Author: Michalis MichalosReleased: 3/30/2024
Log Analytics Query Statistics
Author: Bert-Jan PalsReleased: 3/29/2024
Watchlist Item Delete
Author: Rod TrentReleased: 3/28/2024
EEG Storage Accounts
Author: Alex VerboonReleased: 3/26/2024
EEG Critical Assets
Author: Alex VerboonReleased: 3/26/2024
EEG Malicious Link
Author: Alex VerboonReleased: 3/26/2024
EEG Azure Virtual Machines
Author: Alex VerboonReleased: 3/26/2024
Resource Container Changes Azure Subscription Modified
Author: Jose Sebastián CanósReleased: 3/26/2024
AD Sensitive Group Changes
Author: Alex VerboonReleased: 3/25/2024
MDE Software Uninstall
Author: Alex VerboonReleased: 3/25/2024
AD GPO Creation
Author: Alex VerboonReleased: 3/25/2024
MDE Parse Netsh
Author: Alex VerboonReleased: 3/25/2024
Summary Of Privileged Operations By Directory Role Member
Author: Thomas NaunheimReleased: 3/24/2024
Azure Resource Count
Author: Bert-Jan PalsReleased: 3/22/2024
NTDS Dit File Modifications
Author: Bert-Jan PalsReleased: 3/21/2024
Sensitive Microsoft Graph Delegated Permission Access
Author: Thomas NaunheimReleased: 3/21/2024
Tarfilexecutions
Author: Ali HusseinReleased: 3/20/2024
Chromeloader Registry Value Large Size Generic
Author: Ali HusseinReleased: 3/20/2024
Possible Malicious Browser Extension Loaded
Author: Ali HusseinReleased: 3/20/2024
Audit Admin Actionsfrom Risky Users
Author: Matt ZorichReleased: 3/20/2024
Multiple IP Entity Power Platform Connector Activity
Author: Jose Sebastián CanósReleased: 3/19/2024
Multiple IP Entity Power Apps Activity
Author: Jose Sebastián CanósReleased: 3/19/2024
Security Event Account Created By Unexpected Account
Author: Jose Sebastián CanósReleased: 3/19/2024
Identity Protection Latency Issues
Author: Jose Sebastián CanósReleased: 3/19/2024
Device Network Events Suspicious Process Connection To Cloudfront Domain
Author: Jose Sebastián CanósReleased: 3/18/2024
MDE Net Activities
Author: Bert-Jan PalsReleased: 3/15/2024
Device Network Events Suspicious Connection By COM Surrogate
Author: Jose Sebastián CanósReleased: 3/15/2024
Device Network Events Suspicious Connection By Wer Fault
Author: Jose Sebastián CanósReleased: 3/15/2024