VishnuBeginner’s Guide: Using KQL for Email Investigations in DefenderIntroduction to KQL and Microsoft Defender for Email Investigations1d ago
John D CyberKQL WINDOWS THREAT HUNTING WITH JohnDCyberExplore a collection of KQL queries crafted for dynamic threat hunting across a diverse range of topics, techniques, and use cases!Jul 11
RohitashokgowdTake Automatic actions in XDR with help of Advance hunting and Custom detection rulesXDR can take remediation actions and disrupt attacks by automatically containing compromised assets through Attack Disruption. However, not…Aug 11Aug 11
José Fernando CostaCommon KQL functions to know when working with Azure Data ExplorerLet’s have a look at common KQL functions to make your life easier in Azure Data ExplorerNov 7, 2022Nov 7, 2022
Mahdi HutamaDetecting windows local account creation — MITRE ATT&CK T1136.001Microsoft defender Advanced hunting KQL — Custom detection rulesAug 12Aug 12
VishnuBeginner’s Guide: Using KQL for Email Investigations in DefenderIntroduction to KQL and Microsoft Defender for Email Investigations1d ago
John D CyberKQL WINDOWS THREAT HUNTING WITH JohnDCyberExplore a collection of KQL queries crafted for dynamic threat hunting across a diverse range of topics, techniques, and use cases!Jul 11
RohitashokgowdTake Automatic actions in XDR with help of Advance hunting and Custom detection rulesXDR can take remediation actions and disrupt attacks by automatically containing compromised assets through Attack Disruption. However, not…Aug 11
José Fernando CostaCommon KQL functions to know when working with Azure Data ExplorerLet’s have a look at common KQL functions to make your life easier in Azure Data ExplorerNov 7, 2022
Mahdi HutamaDetecting windows local account creation — MITRE ATT&CK T1136.001Microsoft defender Advanced hunting KQL — Custom detection rulesAug 12
Mehmet ErgeneA Deep Dive into the KQL Union OperatorCombining datasets efficiently using the KQL union operator for better security analysis.Dec 4, 2023
Mahdi HutamaDetecting changes in AD groups membership activitiesMicrosoft defender Advanced hunting KQL — Custom detection rulesAug 11
Narayn ManoharanItemising the Costs for your Azure Log Analytics WorkspaceIf you’re managing a shared and centralized Azure Log Analytics Workspace (LAW) that receives logs from multiple resources, but you lack…Apr 15