KQL Query
Posts Categories whoami Projects Events KQL News
KQL Query
Cancel
PostsCategorieswhoamiProjectsEventsKQL News

 SOC

2025

Investigating ClickFix Incidents 05-06
Monitor For New Actions In Sentinel And MDE 01-30

2024

UAL = Unaligned Activity Logs 11-14
Unleash The Power Of DeviceTvmInfoGathering 10-10
Use Cases For Sentinel Summary Rules 09-11
Sentinel Automation Part 2: Automate CISA Known Exploited Vulnerability Notifications 08-14
Audit Defender XDR Activities 05-30
Sentinel Automation Part 1: Enriching Sentinel Incidents with KQL Results 04-10

2023

KQL Functions For Network Operations 11-06
KQL Functions For Security Operations 09-15
2023 - 2025  | ©