Forum Discussion

Copper Contributor

Jun 16, 2021

Translate Splunk query to Sentinel

Is there a good source/site to translate Splunk queries into Kusto/Sentinel? I've managed to get the first part but it's the second part that is the challenge. This is what I'm looking to translate...

GaryBushey

Bronze Contributor

Jun 16, 2021

j0ebeer You can start here: https://docs.microsoft.com/en-us/azure/data-explorer/kusto/query/splunk-cheat-sheet