SentinelOne Power Query UI
- EDR
- Security Operations
A user interface for SentinelOne query operations to streamline common investigations and hunting workflows.
Features
- Quick query templates
- Saved searches
- Export and sharing
Installation
- Clone the repository
- Follow setup instructions in the README
Usage
ProcessName = "powershell.exe" and Tactic = "Execution"Security Considerations
- No credentials are stored in the client
- Follow principle of least privilege for any API tokens (if used by backend components)
Links
SentinelOne Power Query UI
EDRUser interface for SentinelOne query operations
★ –
⎇ –
–
Updated –