Microsoft Azure
Published in

Microsoft Azure

A Deeper look into Sentinel Analytic Rules and Behavior Analysis

I recently discussed Importance of Entity Behavioral modeling in Sentinel.

However, it’s necessary a deeper look into this capability to properly understand it.

You see, this Analytical, machine-learning powered, feature can assist Sentinel admins and the larger SOC in multiple ways.

Let’s then peel the onion from different angles.

Glass Onion (Remastered 2009) — YouTube

--

--

--

Any language. Any platform. Our team is focused on making the world more amazing for developers and IT operations communities with the best that Microsoft Azure can provide. If you want to contribute in this journey with us, contact us at medium@microsoft.com

Recommended from Medium

Template Manuscript Seri IPTEK Proceeding

Build an ASP.NET Core Web API 5.0 with CURD operations using Entity Framework DB first approach.

READ/DOWNLOAD%& DevOps for Web Development FULL BO

Writing Slackbots With Goroutines

Messaging System — Hands On!

MISBLOC Submits a Patent Application for Providing Evaluation of Medical Posts

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Andre Camillo

Andre Camillo

Cloud and Security technologies, Career, sometimes Music and Gaming easter eggs. Technical Specialist @Microsoft. Opinions are my own.

More from Medium

How can a SIEM provide Entity Insights?

Compiling Priority CVEs for Vulnerability Remediation Prioritization

Use Sentinel Basic and Archive logs

Deploy F5 HTTPS VIPs using Terraform and HashiCorp Vault PKI Secrets engine