KQL Search
Search engine for KQL Queries
New queries added today: 0
Assistant
Generator
Lab
Show Advanced Filters
Table:
Select...
Author:
Select...
Keyword:
Select...
Operator:
Select...
Newsletter
Statistics
Submit query
Weird Session Id
Author: Jose Sebastián Canós
Released: 5/7/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Graph URIAPI Request Stats
Author: Bert-Jan Pals
Released: 5/6/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
IP Enrichment
Author: Bert-Jan Pals
Released: 5/5/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
App Enrichment AAD Non Interactive User Sign In Logs
Author: Bert-Jan Pals
Released: 5/3/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
App Enrichment External Data
Author: Bert-Jan Pals
Released: 5/2/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Graph Resource API Request Stats
Author: Bert-Jan Pals
Released: 5/1/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
MITRE ATLAS Csv Parser
Author: Rod Trent
Released: 5/1/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Azure Hound
Author: Bert-Jan Pals
Released: 5/1/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
MITRE ATLAS Parser
Author: Rod Trent
Released: 4/30/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
MITRE JSON Parser
Author: Rod Trent
Released: 4/30/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Rdp Default Listening Port Modification
Author: Michalis Michalos
Released: 4/27/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Identify Endpoints Where Mitigationstatus Is Isolated
Author: Michalis Michalos
Released: 4/27/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Netsh Command For Firewall To Allow Incoming Rdp Connections
Author: Michalis Michalos
Released: 4/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Rdp Enable By Modifying Registry Key
Author: Michalis Michalos
Released: 4/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Entra ID Group Membershipchanges Dynamic
Author: Alex Verboon
Released: 4/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Entra ID MDE Device Registrations
Author: Alex Verboon
Released: 4/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Audit Logs User Activities
Author: Bert-Jan Pals
Released: 4/25/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Country Info External
Author: Rod Trent
Released: 4/25/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Azure Service I Ps
Author: Rod Trent
Released: 4/24/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Sentinel Analytics Rule New CISA Know Exploited Vulnerability Added
Author: Bert-Jan Pals
Released: 4/23/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
App Traces App Service Failures
Author: Jose Sebastián Canós
Released: 4/22/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
MDE AIP Client
Author: Alex Verboon
Released: 4/21/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
D4IOT Io T PLC Operating Mode
Author: Alex Verboon
Released: 4/21/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
D4IOT Malicious Name Queries Detection
Author: Alex Verboon
Released: 4/21/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
D4IOT FTP Authentication Failure
Author: Alex Verboon
Released: 4/21/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
D4IOT Io T Malware Detected
Author: Alex Verboon
Released: 4/21/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Graph API Suspicious User Requests
Author: Bert-Jan Pals
Released: 4/21/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
User Enrichment
Author: Bert-Jan Pals
Released: 4/20/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Collect Incident Statistics
Author: Bert-Jan Pals
Released: 4/19/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Minimum Characters For Pim Activation Justification
Author: Michalis Michalos
Released: 4/13/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Parsing Wiz Issues
Author: Jose Sebastián Canós
Released: 4/11/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
List AD Delegations
Author: Bert-Jan Pals
Released: 4/7/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Azure AD Depreicated Power Shell Module
Author: Alex Verboon
Released: 4/5/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
DCA Extract Phone Number
Author: Matt Zorich
Released: 4/4/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Table Data
Author: Rod Trent
Released: 4/4/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Data Per Computer
Author: Rod Trent
Released: 4/4/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Parse Ipv4 Malfunction
Author: Jose Sebastián Canós
Released: 4/3/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Dns Events DNS Query Resolved To Palo Alto Networks Sinkhole
Author: Jose Sebastián Canós
Released: 4/2/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
AWS Cloud Trail AWS S3 Object Encrypted With External Key
Author: Jose Sebastián Canós
Released: 4/1/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Inbound SSH Connection To Vulnerable XZ Machine
Author: Bert-Jan Pals
Released: 3/30/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
CVE 2024 3094 Internet Facing Devices
Author: Michalis Michalos
Released: 3/30/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Log Analytics Query Statistics
Author: Bert-Jan Pals
Released: 3/29/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Watchlist Item Delete
Author: Rod Trent
Released: 3/28/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
EEG Storage Accounts
Author: Alex Verboon
Released: 3/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
EEG Azure Virtual Machines
Author: Alex Verboon
Released: 3/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
EEG Critical Assets
Author: Alex Verboon
Released: 3/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
EEG Malicious Link
Author: Alex Verboon
Released: 3/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Resource Container Changes Azure Subscription Modified
Author: Jose Sebastián Canós
Released: 3/26/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
AD GPO Creation
Author: Alex Verboon
Released: 3/25/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
MDE Parse Netsh
Author: Alex Verboon
Released: 3/25/2024
Show Query
Show Explanation
Copy URL
Open on GitHub
Share on X
Loading...
Privacy policy
Imprint
Made by
Ugur Koc
with ☕
KQL Community
FAQ