Skip to content
/ Microsoft-Sentinel-As-A-Code Public

Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD Pipeline

License

MIT license
58 stars 18 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sreedharande/Microsoft-Sentinel-As-A-Code

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

35 Commits
dll
dll
 
 
images
images
 
 
Export_Sentinel_Artifacts.ps1
Export_Sentinel_Artifacts.ps1
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Microsoft-Sentinel-As-A-Code

Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD Pipeline

  • Currently supporting
    • Scheduled Analytical Rules
    • Automation Rules
    • Parsers (Saved Searches - KQL Functions)
    • Workbooks

How to use

  1. Download the Tool
    Download

  2. Extract the folder and open "Export_Sentinel_Artifacts.ps1" either in Visual Studio Code/PowerShell(Admin)

    Note
    The script runs from the user's machine. You must allow PowerShell script execution. To do so, run the following command:

    Set-ExecutionPolicy -Scope Process -ExecutionPolicy Bypass

  3. Run the script using the following command

    .\Export_Sentinel_Artifacts.ps1 -TenantID xxxx `

Questions ❓ / Issues 🙋‍♂️ / Feedback 🗨

Post here.

Contributions are welcome! 👏

About

Export Microsoft Sentinel artifacts like Analytical Rules, Hunting Queries, Workbooks in order to support new feature Repositories CI/CD Pipeline

Resources

Readme

License

MIT license
Activity

Stars

58 stars

Watchers

5 watching

Forks

18 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages