├── Azure Sentinel UseCases.pdf
├── Azure-Sentinel-Technical-Playbook-for-MSSPs.pdf
├── AzureSentinelIconPack.zip
├── AzureSentinel_icon_32x32.zip
├── Collection.png
├── CommandandControl.png
├── CredentialAccess.png
├── DefenseEvasion.png
├── Discovery.png
├── Execution.png
├── Exfiltration.png
├── Impact.png
├── InitialAccess.png
├── LateralMovement.png
├── MITRE ATT&CK Framework Reference.pdf
├── Persistence.png
├── PrivilegeEscalation.png
├── SecurityIncident_Columns
├── SentinelPerms.pptx
├── jcp-01-00021.pdf
├── mitretimeline.jpg
├── mitretimelinenow.jpg
├── powershell.png
├── preattack.png
├── reviewmirrorpowershellblack.png
└── stripline.png


/Azure Sentinel UseCases.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/Azure Sentinel UseCases.pdf


--------------------------------------------------------------------------------
/Azure-Sentinel-Technical-Playbook-for-MSSPs.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/Azure-Sentinel-Technical-Playbook-for-MSSPs.pdf


--------------------------------------------------------------------------------
/AzureSentinelIconPack.zip:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/AzureSentinelIconPack.zip


--------------------------------------------------------------------------------
/AzureSentinel_icon_32x32.zip:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/AzureSentinel_icon_32x32.zip


--------------------------------------------------------------------------------
/Collection.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/Collection.png


--------------------------------------------------------------------------------
/CommandandControl.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/CommandandControl.png


--------------------------------------------------------------------------------
/CredentialAccess.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/CredentialAccess.png


--------------------------------------------------------------------------------
/DefenseEvasion.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/DefenseEvasion.png


--------------------------------------------------------------------------------
/Discovery.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/Discovery.png


--------------------------------------------------------------------------------
/Execution.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/Execution.png


--------------------------------------------------------------------------------
/Exfiltration.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/Exfiltration.png


--------------------------------------------------------------------------------
/Impact.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/Impact.png


--------------------------------------------------------------------------------
/InitialAccess.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/InitialAccess.png


--------------------------------------------------------------------------------
/LateralMovement.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/LateralMovement.png


--------------------------------------------------------------------------------
/MITRE ATT&CK Framework Reference.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/MITRE ATT&CK Framework Reference.pdf


--------------------------------------------------------------------------------
/Persistence.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/Persistence.png


--------------------------------------------------------------------------------
/PrivilegeEscalation.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/PrivilegeEscalation.png


--------------------------------------------------------------------------------
/SecurityIncident_Columns:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/SecurityIncident_Columns


--------------------------------------------------------------------------------
/SentinelPerms.pptx:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/SentinelPerms.pptx


--------------------------------------------------------------------------------
/jcp-01-00021.pdf:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/jcp-01-00021.pdf


--------------------------------------------------------------------------------
/mitretimeline.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/mitretimeline.jpg


--------------------------------------------------------------------------------
/mitretimelinenow.jpg:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/mitretimelinenow.jpg


--------------------------------------------------------------------------------
/powershell.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/powershell.png


--------------------------------------------------------------------------------
/preattack.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/preattack.png


--------------------------------------------------------------------------------
/reviewmirrorpowershellblack.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/reviewmirrorpowershellblack.png


--------------------------------------------------------------------------------
/stripline.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/rod-trent/AzureSentinelMisc/HEAD/stripline.png


--------------------------------------------------------------------------------