sentinelone-powerquery
CommunityWrite and run SentinelOne PowerQuery queries.
Authorpmoses-s1
Version1.0.0
Installs0
System Documentation
What problem does it solve?
The SentinelOne PowerQuery skill empowers security analysts to author, debug, optimize, explain, and run PowerQuery queries against SentinelOne SDL data to accelerate threat hunting, investigations, and detection-rule workflows.
Core Features & Use Cases
- Write, validate, and execute PowerQuery bodies against confirmed API schemas with guidance for LRQ execution and MCP fallback.
- Debug, explain, and refine queries for threat hunting, incident response, dashboards, and STAR/Custom Detection rule development.
- Leverage reference materials and examples to accelerate production-ready PQs across tenants and data sources.
Quick Start
Draft a PowerQuery body and run it against your tenant to retrieve a structured table of events.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: sentinelone-powerquery Download link: https://github.com/pmoses-s1/claude-skills/archive/main.zip#sentinelone-powerquery Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.