sameer fakhoury
  • Home
  • CTF Writeups
  • Course Summaries
  • Cyber Reports
  • Articles
  • Event Notes
  • About Me
Data normalization in Microsoft Sentinel

Data normalization in Microsoft Sentinel

  • wwlpublish Data normalization in Microsoft Sentinel - Trainingwwlpublish Data normalization in Microsoft Sentinel - Training
  • By the end of this module, you'll be able to use ASIM parsers to identify threats within your organization and create both ASIM parsers and parameterized KQL functions.
‣
ASIM simple explanation with extra technical resources
‣

Introduction

‣

Understand data normalization

‣

Use ASIM Parsers

‣

Understand parameterized KQL functions

‣

Create an ASIM Parser

‣

Configure Azure Monitor Data Collection Rules

‣

Knowledge check

‣

Summary and resources

©sameer fakhoury

GitHubLinkedIn