sameer fakhoury
  • Home
  • CTF Writeups
  • Course Summaries
  • Cyber Reports
  • Articles
  • Event Notes
  • About Me
Connect Windows hosts to Microsoft Sentinel

Connect Windows hosts to Microsoft Sentinel

  • wwlpublish Connect Windows hosts to Microsoft Sentinel - Trainingwwlpublish Connect Windows hosts to Microsoft Sentinel - Training
  • This module teaches how to collect Windows security events with Microsoft Sentinel using the Security Events connector. Learners will be able to connect Azure and non-Azure Windows hosts to Sentinel and configure the Log Analytics agent for Sysmon events.
‣

Introduction

‣

Plan for Windows hosts security events connector

‣

Connect using the Windows Security Events via AMA Connector

‣

Connect using the Security Events via Legacy Agent Connector

‣

Collect Sysmon event logs

‣

Knowledge check

‣

Summary and resources

©sameer fakhoury

GitHubLinkedIn