sameer fakhoury
  • Home
  • CTF Writeups
  • Course Summaries
  • Cyber Reports
  • Articles
  • Event Notes
  • About Me
6.2 Analyze query results using KQL

6.2 Analyze query results using KQL

  • wwlpublish Analyze query results using KQL - Trainingwwlpublish Analyze query results using KQL - Training
  • This module teaches you how to summarize and visualize data using KQL statements, which is essential for building detections in Microsoft Sentinel. By the end, you'll be able to effectively summarize data and create visualizations with KQL.
‣

Introduction

‣

Use the summarize operator

‣

Use the summarize operator to filter results

‣

Use the summarize operator to prepare data

‣

Use the render operator to create visualizations

‣

Knowledge check

‣

Summary and resources

©sameer fakhoury

GitHubLinkedIn