Sentinel: Creating Data Collection Rules to send to the SecurityEvent table

Currently today you can ingest Windows Security Events to Microsoft Sentinel using the Windows Security Events via AMA data connector. This data connector will send events directly to the SecurityEvent table. When it comes to Windows event log collection its fairly important that events generally land in the SecurityEvent table. Most of the out of … Read more

Sentinel Syslog Forwarder with AMA

Configure syslog forwarding for Microsoft Sentinel with the Azure Monitor Agent

%d bloggers like this: