wwlpublish Analyze query results using KQL - Training
- This module teaches you how to
summarizeandvisualizedata usingKQLstatements, which is essential for buildingdetectionsin Microsoft Sentinel. By the end, you'll be able to effectivelysummarizedata andcreate visualizationswith KQL.
‣
Introduction
‣
Use the summarize operator
‣
Use the summarize operator to filter results
‣
Use the summarize operator to prepare data
‣
Use the render operator to create visualizations
‣
Knowledge check
‣