Featured Blog > Help for Security Operations Centers facing new challenges
https://techcommunity.microsoft.com/t5/azure-sentinel/help-for-security-operations-centers-facing-new-challenges/ba-p/1278903

Featured Blog > What’s New: Improved Incident Closing Experience is now Available!
https://techcommunity.microsoft.com/t5/azure-sentinel/what-s-new-improved-incident-closing-experience-is-now-available/ba-p/1278807

Featured Blog > Enabling security research & hunting with open source IoT attack data
https://techcommunity.microsoft.com/t5/azure-sentinel/enabling-security-research-amp-hunting-with-open-source-iot/ba-p/1279037

Featured Blog > Azure Sentinel Resource Terminus – board here!
https://techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-resource-terminus-board-here/ba-p/1269252

Featured Blog > Quick wins – Proactively identify signs of intrusions in real time with Azure Sentinel Livestream
https://techcommunity.microsoft.com/t5/azure-sentinel/quick-wins-proactively-identify-signs-of-intrusions-in-real-time/ba-p/1269745

Featured Blog > Usage reporting for Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/usage-reporting-for-azure-sentinel/ba-p/1267383

Featured Blog > Protecting your Teams with Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/protecting-your-teams-with-azure-sentinel/ba-p/1265761

Featured Blog > Azure Sentinel To-Go: Sentinel Lab w/ Prerecorded Data 😈 & a Custom Logs Pipe via ARM Templates 🚀
https://techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-to-go-sentinel-lab-w-prerecorded-data-amp-a/ba-p/1260191

Featured Blog > Azure Sentinel To-Go: Sentine Lab with Prerecorded Data 😈 & a Custom Logs Pipe via ARM Templates 🚀
https://techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-to-go-sentine-lab-with-prerecorded-data-amp-a/ba-p/1260191

Featured Blog > Compliance Reporting for Azure
https://techcommunity.microsoft.com/t5/azure-sentinel/compliance-reporting-for-azure/ba-p/1259574

Featured Blog > Access Azure Sentinel Log Analytics via API (Part 1)
https://techcommunity.microsoft.com/t5/azure-sentinel/access-azure-sentinel-log-analytics-via-api-part-1/ba-p/1248377

Featured Blog > Ingest Fastly Web Application Firewall logs into Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/ingest-fastly-web-application-firewall-logs-into-azure-sentinel/ba-p/1238804

Featured Blog > Security Graph API and Sentinel Log Analytics (Part 1)
https://techcommunity.microsoft.com/t5/azure-sentinel/security-graph-api-and-sentinel-log-analytics-part-1/ba-p/1248377

Featured Blog > Azure Sentinel Sigma and SOC Prime Integration (Part 1)
https://techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-sigma-and-soc-prime-integration-part-1/ba-p/1232903

Featured Blog > Connect X-Force Exchange API on Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/connect-x-force-exchange-api-on-azure-sentinel/ba-p/1246880

Featured Blog > Ingesting Auditd (configured for PAM TTY Session Key Logging) into Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/ingesting-auditd-configured-for-pam-tty-session-key-logging-into/ba-p/1113827

Featured Blog > Azure Sentinel Side-by-Side with Splunk
https://techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-side-by-side-with-splunk/ba-p/1211266

Featured Blog > Azure Sentinel in Side-by-Side with Splunk
https://techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-in-side-by-side-with-splunk/ba-p/1211266

Featured Blog > Azure Sentinel in Side-by-Site with Splunk
https://techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-in-side-by-site-with-splunk/ba-p/1211266

Featured Blog > Combining Azure Lighthouse with Sentinel’s DevOps capabilities
https://techcommunity.microsoft.com/t5/azure-sentinel/combining-azure-lighthouse-with-sentinel-s-devops-capabilities/ba-p/1210966

Featured Blog > Azure Sentinel Insecure Protocols Workbook Implementation Guide
https://techcommunity.microsoft.com/t5/azure-sentinel/azure-sentinel-insecure-protocols-workbook-implementation-guide/ba-p/1197564

Featured Blog > What’s New: Reduce alert noise with Incident settings and alert grouping in Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/what-s-new-reduce-alert-noise-with-incident-settings-and-alert/ba-p/1187940

Featured Blog > Scaling Up Syslog CEF Collection
https://techcommunity.microsoft.com/t5/azure-sentinel/scaling-up-syslog-cef-collection/ba-p/1185854

Featured Blog > Office 365 Email Activity and Data Exfiltration Detection
https://techcommunity.microsoft.com/t5/azure-sentinel/office-365-email-activity-and-data-exfiltration-detection/ba-p/1169652

Featured Blog > Bring your threat intelligence to Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/bring-your-threat-intelligence-to-azure-sentinel/ba-p/1167546

Featured Blog > Explorer Notebook Series: The Linux Host Explorer
https://techcommunity.microsoft.com/t5/azure-sentinel/explorer-notebook-series-the-linux-host-explorer/ba-p/1138273

Featured Blog > Deploying and Managing Azure Sentinel as Code
https://techcommunity.microsoft.com/t5/azure-sentinel/deploying-and-managing-azure-sentinel-as-code/ba-p/1131928

Featured Blog > Extending Azure Sentinel: APIs, Integration and management automation
https://techcommunity.microsoft.com/t5/azure-sentinel/extending-azure-sentinel-apis-integration-and-management/ba-p/1116885

Featured Blog > Implementing Lookups in Azure Sentinel part #1: reference files
https://techcommunity.microsoft.com/t5/azure-sentinel/implementing-lookups-in-azure-sentinel-part-1-reference-files/ba-p/1091306

Featured Blog > Ingesting Alien Vault OTX Threat Indicators into Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/ingesting-alien-vault-otx-threat-indicators-into-azure-sentinel/ba-p/1086566

Featured Blog > Ingest Box.com activity events via Microsoft Cloud App Security into Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Ingest-Box-com-activity-events-via-Microsoft-Cloud-App-Security/ba-p/1072849

Featured Blog > Ingest Sample CEF data into Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Ingest-Sample-CEF-data-into-Azure-Sentinel/ba-p/1064158

Featured Blog > Azure Sentinel correlation rules: the join KQL operator
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-correlation-rules-the-join-KQL-operator/ba-p/1041500

Featured Blog > Using Azure Lighthouse and Azure Sentinel to Monitor Across Multiple Tenants
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Using-Azure-Lighthouse-and-Azure-Sentinel-to-Monitor-Across/ba-p/1043899

Featured Blog > Azure Sentinel correlation rules: Active Lists out; make_list() in, the AAD/AWS correlation example
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-correlation-rules-Active-Lists-out-make-list-in/ba-p/1029225

Featured Blog > Ingest Office 365 DLP Events into Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Ingest-Office-365-DLP-Events-into-Azure-Sentinel/ba-p/1031820

Featured Blog > Azure Sentinel correlation rules: Active Lists out; makelist() in, the AAD/AWS correlation example
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-correlation-rules-Active-Lists-out-makelist-in/ba-p/1029225

Featured Blog > Hunting for Capital One Breach TTPs in AWS logs using Azure Sentinel – Part II
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Hunting-for-Capital-One-Breach-TTPs-in-AWS-logs-using-Azure/ba-p/1019767

Featured Blog > Best Practices for Common Event Format (CEF) collection in Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Best-Practices-for-Common-Event-Format-CEF-collection-in-Azure/ba-p/969990

Featured Blog > Hunting for Capital One Breach TTPs in AWS logs using Azure Sentinel – Part I
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Hunting-for-Capital-One-Breach-TTPs-in-AWS-logs-using-Azure/ba-p/1014258

Featured Blog > Azure Sentinel – Microsoft Ignite 2019 Recap
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-Microsoft-Ignite-2019-Recap/ba-p/1006017

Featured Blog > Using the new built-in URL detonation in Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Using-the-new-built-in-URL-detonation-in-Azure-Sentinel/ba-p/996229

Featured Blog > Azure Sentinel and Azure Arc
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-and-Azure-Arc/ba-p/999379

Featured Blog > Try Azure Sentinel Alongside Your Existing SIEM
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Try-Azure-Sentinel-Alongside-Your-Existing-SIEM/ba-p/912965

Featured Blog > Ingesting Office 365 Alerts with Graph Security API
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Ingesting-Office-365-Alerts-with-Graph-Security-API/ba-p/984888

Featured Blog > Upcoming Azure Sentinel training webinars
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Upcoming-Azure-Sentinel-training-webinars/ba-p/983623

Featured Blog > How to use Azure Sentinel to follow a Users travel and map their location
https://techcommunity.microsoft.com/t5/Azure-Sentinel/How-to-use-Azure-Sentinel-to-follow-a-Users-travel-and-map-their/ba-p/981716

Featured Blog > How to use Azure Monitor Workbooks to map Sentinel data
https://techcommunity.microsoft.com/t5/Azure-Sentinel/How-to-use-Azure-Monitor-Workbooks-to-map-Sentinel-data/ba-p/971818

Featured Blog > Table Level RBAC In Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Table-Level-RBAC-In-Azure-Sentinel/ba-p/965043

Featured Blog > Azure Sentinel at Microsoft Ignite
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-at-Microsoft-Ignite/ba-p/957559