MTP Advance Hunting Cheat Sheet
The purpose of this cheat sheet is to cover commonly used threat hunting queries that can be used with Microsoft Threat Protection. Microsoft Threat Protection has a threat hunting capability that is called Advance Hunting (AH). AH is based on Azure Kusto Query Language (KQL).
The cheat sheet consist of some of the most frequently used threat hunting queries by the community.
The cheat sheet will be continuously updated.