Learn about the latest new features and announcement in Microsoft Sentinel from the past few months.
Learn about the latest new features and announcement in Microsoft Sentinel from the past few months.
The workbooks that you see in Microsoft Sentinel are saved within the Microsoft Sentinel workspace's resource group and are tagged by the workspace in which they were created. To use a workbook template, install the solution that contains the workbook or install the workbook as a standalone item...
Add Microsoft Entra ID workbooks If you use Microsoft Entra ID with Microsoft Sentinel, we recommend that you install the Microsoft Entra solution for Microsoft Sentinel and use the following workbooks: Microsoft Entra sign-ins analyzes sign-ins over time to see if there are anomalies. This workbo...
This blog will demonstrate how to utilize run playbooks on incidents on-demand feature to run playbooks on-demand from the workbooks! Announcing the Microsoft Sentinel: Cybersecurity Maturity Model Certification (CMMC) 2.0 Solution Are you interested in maturing your security operations center capabilit...
and have not spent time on the Hunting Queries or Workbooks yet since I have rather been focused on the Solutions and while I make a bit of progress each day, I still feel like I am missing something simple, most likely related to the deployment script which Sentinel generates when connecte...
"Intune could be improved by organizing different solutions, like Defender and Sentinel, into a single package. This would allow us to focus on security while Microsoft manages other areas. Having a unified solution would drive better management of various sectors. Although the Intune user experien...
common goals and key performance indicators, IT and OT security teams can work together on tabletop exercises to build cohesion. To learn more about how to empower OT and IT security teams to work together, watch our webinar,OT/IoT Enabled SOC with Microsoft Sentinel and Microsoft De...
DDoS Protection Standard reports and flow logsdocumentation to learn more. You can also connect logs to Azure Sentinel, view and analyze your data in workbooks, create custom alerts, and incorporate it into investigation processes. To connect to Azure Sentinel, seeConnect to Azure Sentinel...
DDoS Protection Standard reports and flow logsdocumentation to learn more. You can also connect logs to Azure Sentinel, view and analyze your data in workbooks, create custom alerts, and incorporate it into investigation processes. To connect to Azure Sentinel, seeConnect to Azure Sentinel...