Tag: Threat Hunting
-
Unlocking Scalable Security Analytics: Expose Sentinel Data Lake Notebooks
Discover how notebooks in Microsoft Sentinel Data Lake bring together KQL, Python, and data science to transform security investigations. Learn what they are, why they matter, and what you need to get started before diving deeper into advanced use cases. Read more
-
Mastering Defender XDR: Proven Strategies for Advanced Hunting with KQL to Expose Hidden Attacks
🎤 Special Announcement I’m at Black Hat 25 this week! If you’re attending, come see me at the Microsoft Booth, where I’ll be demoing Security Copilot. Stop by to learn how AI is transforming cybersecurity, and let’s connect to talk about Defender XDR, Advanced Hunting, and Security Copilot in action. 🚀 Introduction In today’s fast-moving Read more
-
Mastering Defender XDR: Secrets of Incident Correlation and Investigation
As part of our Mastering Defender XDR series, we’ve already looked at how Microsoft collects and correlates signals across its security ecosystem. Now, we move forward into one of the most powerful capabilities of the platform: how it builds and manages incidents using Defender XDR strategies. An incident in Microsoft’s ecosystem is not just a Read more