Skip to content

KernelCaleb/Kustonomicon

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

321 Commits
Analytic Rules
Analytic Rules
 
 
Learn
Learn
 
 
Queries
Queries
 
 
README.md
README.md
 
 

Repository files navigation

Kustonomicon

  _              _                              _                 
 | |            | |                            (_)                
 | | ___   _ ___| |_ ___  _ __   ___  _ __ ___  _  ___ ___  _ __  
 | |/ / | | / __| __/ _ \| '_ \ / _ \| '_ ` _ \| |/ __/ _ \| '_ \ 
 |   <| |_| \__ \ || (_) | | | | (_) | | | | | | | (_| (_) | | | |
 |_|\_\\__,_|___/\__\___/|_| |_|\___/|_| |_| |_|_|\___\___/|_| |_|

About

Welcome to the Kustonomicon, a repo containing various KQL queries, techniques, and notes, with a focus on cloud detection and response.

About

A series of cloud focused KQL queries for threat hunting and DFIR

Topics

aws security azure sentinel dfir threat-hunting kusto kql kusto-query-language

Resources

Readme
Activity

Stars

10 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published