Featured Blog > Extending Azure Sentinel: APIs, Integration and management automation
https://techcommunity.microsoft.com/t5/azure-sentinel/extending-azure-sentinel-apis-integration-and-management/ba-p/1116885
タグ: sentinel
Implementing Lookups in Azure Sentinel part #1: reference files
Featured Blog > Implementing Lookups in Azure Sentinel part #1: reference files
https://techcommunity.microsoft.com/t5/azure-sentinel/implementing-lookups-in-azure-sentinel-part-1-reference-files/ba-p/1091306
Ingesting Alien Vault OTX Threat Indicators into Azure Sentinel
Featured Blog > Ingesting Alien Vault OTX Threat Indicators into Azure Sentinel
https://techcommunity.microsoft.com/t5/azure-sentinel/ingesting-alien-vault-otx-threat-indicators-into-azure-sentinel/ba-p/1086566
Ingest Box.com activity events via Microsoft Cloud App Security into Azure Sentinel
Featured Blog > Ingest Box.com activity events via Microsoft Cloud App Security into Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Ingest-Box-com-activity-events-via-Microsoft-Cloud-App-Security/ba-p/1072849
Ingest Sample CEF data into Azure Sentinel
Featured Blog > Ingest Sample CEF data into Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Ingest-Sample-CEF-data-into-Azure-Sentinel/ba-p/1064158
Azure Sentinel correlation rules: the join KQL operator
Featured Blog > Azure Sentinel correlation rules: the join KQL operator
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-correlation-rules-the-join-KQL-operator/ba-p/1041500
Using Azure Lighthouse and Azure Sentinel to Monitor Across Multiple Tenants
Featured Blog > Using Azure Lighthouse and Azure Sentinel to Monitor Across Multiple Tenants
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Using-Azure-Lighthouse-and-Azure-Sentinel-to-Monitor-Across/ba-p/1043899
Azure Sentinel correlation rules: Active Lists out; make_list() in, the AAD/AWS correlation example
Featured Blog > Azure Sentinel correlation rules: Active Lists out; make_list() in, the AAD/AWS correlation example
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-correlation-rules-Active-Lists-out-make-list-in/ba-p/1029225
Ingest Office 365 DLP Events into Azure Sentinel
Featured Blog > Ingest Office 365 DLP Events into Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Ingest-Office-365-DLP-Events-into-Azure-Sentinel/ba-p/1031820
Azure Sentinel correlation rules: Active Lists out; makelist() in, the AAD/AWS correlation example
Featured Blog > Azure Sentinel correlation rules: Active Lists out; makelist() in, the AAD/AWS correlation example
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-correlation-rules-Active-Lists-out-makelist-in/ba-p/1029225
Hunting for Capital One Breach TTPs in AWS logs using Azure Sentinel – Part II
Featured Blog > Hunting for Capital One Breach TTPs in AWS logs using Azure Sentinel – Part II
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Hunting-for-Capital-One-Breach-TTPs-in-AWS-logs-using-Azure/ba-p/1019767
Best Practices for Common Event Format (CEF) collection in Azure Sentinel
Featured Blog > Best Practices for Common Event Format (CEF) collection in Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Best-Practices-for-Common-Event-Format-CEF-collection-in-Azure/ba-p/969990
Hunting for Capital One Breach TTPs in AWS logs using Azure Sentinel – Part I
Featured Blog > Hunting for Capital One Breach TTPs in AWS logs using Azure Sentinel – Part I
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Hunting-for-Capital-One-Breach-TTPs-in-AWS-logs-using-Azure/ba-p/1014258
Azure Sentinel – Microsoft Ignite 2019 Recap
Featured Blog > Azure Sentinel – Microsoft Ignite 2019 Recap
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-Microsoft-Ignite-2019-Recap/ba-p/1006017
Using the new built-in URL detonation in Azure Sentinel
Featured Blog > Using the new built-in URL detonation in Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Using-the-new-built-in-URL-detonation-in-Azure-Sentinel/ba-p/996229
Azure Sentinel and Azure Arc
Featured Blog > Azure Sentinel and Azure Arc
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-and-Azure-Arc/ba-p/999379
Try Azure Sentinel Alongside Your Existing SIEM
Featured Blog > Try Azure Sentinel Alongside Your Existing SIEM
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Try-Azure-Sentinel-Alongside-Your-Existing-SIEM/ba-p/912965
Ingesting Office 365 Alerts with Graph Security API
Featured Blog > Ingesting Office 365 Alerts with Graph Security API
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Ingesting-Office-365-Alerts-with-Graph-Security-API/ba-p/984888
Upcoming Azure Sentinel training webinars
Featured Blog > Upcoming Azure Sentinel training webinars
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Upcoming-Azure-Sentinel-training-webinars/ba-p/983623
How to use Azure Sentinel to follow a Users travel and map their location
Featured Blog > How to use Azure Sentinel to follow a Users travel and map their location
https://techcommunity.microsoft.com/t5/Azure-Sentinel/How-to-use-Azure-Sentinel-to-follow-a-Users-travel-and-map-their/ba-p/981716
How to use Azure Monitor Workbooks to map Sentinel data
Featured Blog > How to use Azure Monitor Workbooks to map Sentinel data
https://techcommunity.microsoft.com/t5/Azure-Sentinel/How-to-use-Azure-Monitor-Workbooks-to-map-Sentinel-data/ba-p/971818
Table Level RBAC In Azure Sentinel
Featured Blog > Table Level RBAC In Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Table-Level-RBAC-In-Azure-Sentinel/ba-p/965043
Azure Sentinel at Microsoft Ignite
Featured Blog > Azure Sentinel at Microsoft Ignite
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-at-Microsoft-Ignite/ba-p/957559
New: Per data type retention is now available for Azure Sentinel
Featured Blog > New: Per data type retention is now available for Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/New-Per-data-type-retention-is-now-available-for-Azure-Sentinel/ba-p/917316
Identifying Threat Hunting opportunities in your data
Featured Blog > Identifying Threat Hunting opportunities in your data
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Identifying-Threat-Hunting-opportunities-in-your-data/ba-p/915721
What am I looking at? – Using Notebooks to gain situational awareness.
Featured Blog > What am I looking at? – Using Notebooks to gain situational awareness.
https://techcommunity.microsoft.com/t5/Azure-Sentinel/What-am-I-looking-at-Using-Notebooks-to-gain-situational/ba-p/891818
Using Threat Intelligence in your Jupyter Notebooks
Featured Blog > Using Threat Intelligence in your Jupyter Notebooks
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Using-Threat-Intelligence-in-your-Jupyter-Notebooks/ba-p/860239
Azure Sentinel is now Generally Available!
Featured Blog > Azure Sentinel is now Generally Available!
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-is-now-Generally-Available/ba-p/873772
Azure Sentinel: Creating Custom Connectors
Featured Blog > Azure Sentinel: Creating Custom Connectors
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-Creating-Custom-Connectors/ba-p/864060
Preparing towards Azure Sentinel’s GA
Featured Blog > Preparing towards Azure Sentinel’s GA
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Preparing-towards-Azure-Sentinel-s-GA/ba-p/860694
Best practices for designing an Azure Sentinel or Azure Security Center Log Analytics workspace
Featured Blog > Best practices for designing an Azure Sentinel or Azure Security Center Log Analytics workspace
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Best-practices-for-designing-an-Azure-Sentinel-or-Azure-Security/ba-p/832574
Upcoming Changes to Fusion in Azure Sentinel
Featured Blog > Upcoming Changes to Fusion in Azure Sentinel
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Upcoming-Changes-to-Fusion-in-Azure-Sentinel/ba-p/819251
Azure Sentinel Agent: Collecting telemetry from on-prem and IaaS server
Featured Blog > Azure Sentinel Agent: Collecting telemetry from on-prem and IaaS server
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Azure-Sentinel-Agent-Collecting-telemetry-from-on-prem-and-IaaS/ba-p/811760
Collecting telemetry from on-prem and IaaS server how to
Featured Blog > Collecting telemetry from on-prem and IaaS server how to
https://techcommunity.microsoft.com/t5/Azure-Sentinel/Collecting-telemetry-from-on-prem-and-IaaS-server-how-to/ba-p/811760