Data normalization in Microsoft Sentinel

Data normalization in Microsoft Sentinel

wwlpublish Data normalization in Microsoft Sentinel - Training
By the end of this module, you'll be able to use ASIM parsers to identify threats within your organization and create both ASIM parsers and parameterized KQL functions.

‣

ASIM simple explanation with extra technical resources

‣

Introduction

‣

Understand data normalization

‣

Use ASIM Parsers

‣

Understand parameterized KQL functions

‣

Create an ASIM Parser

‣

Configure Azure Monitor Data Collection Rules

‣

Knowledge check

‣

Summary and resources