KQL : A Gateway To Microsoft Sentinel (Community Edition)

Description

Welcome to KQL: A Gateway to Microsoft Sentinel (Community Edition)
KQL is a simple query language used to read Structured & Unstructured data across multiple products like
Azure Log Analytics,
Microsoft Sentinel,
Azure Resource Graph

In this book, we will be focusing on how to get started with KQL
while we are using Microsoft Sentinel. With the help of this book, you will have a basic understanding of Kusto Query Language and learn a framework to build your own queries. This is written as a reference for you to start writing and continue to evolve your KQL queries. The building block explained are
Quick Start

Go for a quick result

Filter for better results

➡️ Leverage the joins
➡️ Summarize for perspective
➡️ Save & Reuse
➡️Apply the visual
➡️Build the use case

This book will be myth buster on your KQL journey.

Please order

https://www.amazon.in/KQL-Microsoft-Sentinel-Samik-Roy-ebook/dp/B0CF8TKC82

About the Author

Samik is helping customers implementing in the area of Cloud Security at scale prima facia Microsoft Sentinel. He enjoys educating and loves to build ATOM Products.
During his journey he has Published a FREE Udemy Course with 2K+ enrollments.
Spoken in 25+ Cloud Security Events.
Written 10+ Articles with 10K+ reads.
Build a PowerShell Module on Defender for IOT Raw Logs.
He also entitled as #5 under top contributors for Microsoft Sentinel. L5 Microsoft Sentinel Black Belt since 2022

Ratings & Reviews