sameer fakhoury
  • Home
  • CTF Writeups
  • Course Summaries
  • Cyber Reports
  • Articles
  • Event Notes
  • About Me
Security incident management in Microsoft Sentinel

Security incident management in Microsoft Sentinel

  • wwlpublish Threat response with Microsoft Sentinel playbooks - Trainingwwlpublish Threat response with Microsoft Sentinel playbooks - Training
  • This module covers creating Microsoft Sentinel playbooks to automate incident response, including understanding SOAR capabilities, using Logic Apps connectors, and executing playbooks on demand.
‣

Introduction

‣

Exercise - Set up the Azure environment

‣

Understand incidents

‣

Incident evidence and entities

‣

Incident management

‣

Exercise - Investigate an incident

‣

Summary

©sameer fakhoury

GitHubLinkedIn