Aug 24 2021 11:38 PM
Sep 02 2021 10:24 AM
Hi @tay76,
Aug 15 2022 07:36 AM
Feb 21 2023 05:32 PM
Aug 07 2023 08:46 AM
Add YARA support. GitHub (Owned by MS) holds dozens of repositories containing millions of IoCs that can be integrated with a click of a button to most enterprise SIEMs. Small security departments do not have time to write thousands of KQL queries specific to each IoC. This work was already completed by the original GitHub contributor, don't force customers to reinvent the wheel.