azure-sentinel Examples and Free Source Code

Using KQL and externaldata() operator to pull infromation from json file...

json azure kql azure-sentinel

Logic Apps: How to use create a new watchlist with data (raw content) module...

azure-logic-apps azure-sentinel

Count how many elements are in an array created by make_set in kusto language...

kql azure-sentinel

KQL: bag unpack json into single row...

kql azure-data-explorer azure-sentinel

How to retrieve information on users and applications vulnerable to risk with API?...

azure-sentinel azure-security azure-alerts azure-information-protection

How do I search through the in Sentinel Workbooks stored queries?...

azure azure-sentinel azure-monitor-workbooks

How to create a whitelist with two fields in KQL with a Watchlist?...

kql azure-sentinel

KQL: How to reference columns within a let query in the next query...

kql azure-data-explorer azure-log-analytics azure-sentinel

Logic Apps copy action gives: The managed identity used with this operation no longer exists. To con...

azure azure-logic-apps kql azure-sentinel

String function not parsing all characters...

kql azure-data-explorer azure-sentinel

Azure Sentinel: Logic App Playbook Code Migration to Another Tenant...

azure-logic-apps azure-rm-template azure-sentinel

Does using Azure Whois api needs microsoft sentinel to be set up or it can be used stand alone...

azure azure-sentinel

KQL: Datetime conversion and use of min and max functions...

kql azure-log-analytics azure-sentinel

Is there a way to change the Playbook Settings in Microsoft Sentinel through Terraform...

azure terraform permissions azure-logic-apps azure-sentinel

KQL query construction with parameters and default values...

azure kql azure-sentinel

Azure Sentinel Incident Trigger in Logic Apps Automation Delay...

azure-logic-apps azure-sentinel

How to understand Microsoft Entra application required for log ingestion API...

azure azure-sentinel

KQL - How to enrich an event by matching an IP address to an IP range from a Sentinel Watchlist?...

kql azure-log-analytics azure-sentinel

Need help to understand if azure sentinel data connection solution is being built correctly...

azure azure-sentinel

TimeGenerated field not taking provided date...

azure-log-analytics azure-sentinel

Trying to parse non-uniform JSON arrays with KQL in Sentinel...

kql azure-sentinel

Is there a replace multiple / parse unicode in string function?...

unicode kql azure-data-explorer azure-sentinel

How to change/upgrade the microsoft azure function app plan from consumption to premium under micros...

azure google-cloud-platform azure-functions azure-sentinel

Azure AKS in-container logs to Azure Logs/Azure Sentinel...

azure-devops azure-aks azure-log-analytics log-shipping azure-sentinel

Using KQL and externaldata() operator to pull infromation from Azure storage account table...

azure kql azure-log-analytics azure-sentinel

Azure Sentinel: Be notified when a playbook run fails or playbook action is disconnected...

azure azure-automation azure-diagnostics azure-sentinel

KQL - Aggregate on latest entry...

azure kql azure-data-explorer azure-sentinel

KQL: Check table of IPs against table of subnets...

azure-data-explorer kql azure-log-analytics azure-sentinel microsoft365-defender

Use KQL query to return a list of column names...

kql azure-sentinel

Store variable in Azure logic app to use in next run...

azure azure-logic-apps api-design azure-log-analytics azure-sentinel