Sentinel – Azure Feeds

January 21, 2025

Published by Charbel Nemnom on January 21, 2025

Categories

Community

Achieve Enhancing Cybersecurity with Microsoft Sentinel

In today’s rapidly evolving threat landscape, protecting enterprise environments from sophisticated cyberattacks demands a comprehensive and proactive approach. Microsoft Sentinel, a scalable, cloud-native SIEM (Security Continue […]

January 10, 2025

Published by Charbel Nemnom on January 10, 2025

Categories

Community

Mastering Microsoft Sentinel Playbooks for Enhanced Security

Microsoft Sentinel is a cloud-native security information and event management (SIEM) and security orchestration, automation, and response (SOAR) platform. Being in the cloud, it is Continue […]

December 16, 2024

Published by Charbel Nemnom on December 16, 2024

Categories

Community

Optimize Costs Using Ingestion-Time Transformation for Fortinet Logs in Microsoft Sentinel

Fortinet firewall logs, when ingested into Sentinel’s `CommonSecurityLog` table, are billed at the Analytics tier rates. For organizations with high log volumes, this can result Continue […]

December 2, 2024

Published by Charbel Nemnom on December 2, 2024

Categories

Community

Effective Approach To Collect Linux Logs to Microsoft Sentinel

Centralized logging is crucial for effectively managing Linux systems. Organizations can streamline their log management processes by using tools like Rsyslog/Syslog-ng and integrating with platforms Continue […]