Forum Discussion
Ninja Cat Giveaway: Episode 3 | Sentinel integration
For this episode, your opportunity to win a plush ninja cat is the following -
Reply to this thread with: what was your favorite feature Javier presented? Oh and what does UEBA stand for?
This offer is non-transferable and cannot be combined with any other offer. This offer ends on April 14th, 2023, or until supplies are exhausted and is not redeemable for cash. Taxes, if there are any, are the sole responsibility of the recipient. Any gift returned as non-deliverable will not be re-sent. Please allow 6-8 weeks for shipment of your gift. Microsoft reserves the right to cancel, change, or suspend this offer at any time without notice. Offer void in Cuba, Iran, North Korea, Sudan, Syria, Region of Crimea, Russia, and where prohibited.
- NeillPertMicrosoftEUBA = End User Behaviour Analytics.
My absolute favourite feature which Javier presented? Tough ask. The Case management features have really been a hit in my recent customer presentations, but I have really got in to the power of automations. The Sentinel Triage AssistanT (STAT) on GitHub, and playing around with asking ChatGPT questions from Incidents are particularly impactful. - Shuchika_BhanotMicrosoft
- My favorite feature Javier presented- Sentinel being on stop all solution covering SIEM,SOAR and UEBA. How beautifully the integration(through connectors) and automation are present as part of solution with the bi-directional flow among components like SIEM and SOAR
- UEBA stands for User and Entity Behavior Analytics
- PaulPringleBrass ContributorExcellent session with Javier! UEBA is User and Entity Behavior Analytics. I was surprised to see how many Data Connectors exist to pick from in Sentinel, but my favorite feature was the Automation!
- JasonCardenasCopper ContributorMy favorite feature was the Dashboard feature. I think it's very important to be able to visualize data in a way that makes it meaningful for reporting and decision-making. UEBA stands for User and Entity Behavior Analytics.
- Manb4tCopper Contributor
UEBA stands for User and Entity Behavior Analytics which is a really great feature of Microsoft Sentinel and provides not only amazing anomaly detection analytics rules but also provides some great tables for hunting and enrichment such as the IdentityInfo table. My favorite feature presented was analytics rules.
Such anomaly detection could be used to detect the presence of dogs in the video to provide an early warning to ninja cats before the become dinner 🙂 - kingston2020Copper ContributorFavourite feature is Analytics rules - the power of detection from simple to most complex incidences is pretty impressive
UEBA - User Entity Behaviour Analytics - AndreasRBrass ContributorUEBA: User and Entity Behavior Analytics
I like at most the bi-directional sync between M365 Defender and Sentinel. It is great to manage incidents in one system and not in multiple systems. - PJR_CDFIron Contributor
Hey HeikeRitter
I love the automation feature - opens up so many possibilities!!
UEBA = User and Entity Behavior Analytics
- Great show and liked the part of playbooks, always nice to learn new things. Looking forward to next new episodes.
UEBA = User and entity behavior analytics - _Herve_Microsoft
HI Heike,
My favorite feature is the Mitre Attack Table classification. I also like the granular way of integrating Defender 365 in sentinel
And Finally, it is impressive the number of connectors available since 2020.
UEBA Stands for User and Entity Behavior analytics
Thanks again for these interesting contents