Home

Using Jupyter Notebooks for CyberSecurity Hunting

%3CLINGO-SUB%20id%3D%22lingo-sub-488011%22%20slang%3D%22en-US%22%3EUsing%20Jupyter%20Notebooks%20for%20CyberSecurity%20Hunting%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-488011%22%20slang%3D%22en-US%22%3E%3CP%3EWe've%20start%20a%20blog%20companion%20to%20the%20%23AzureSentinel%20Community.%3C%2FP%3E%0A%3CP%3EI've%20recently%20posted%202%20articles%20on%20using%20Jupter%20Notebooks%20in%20Azure%20Sentinel%20for%20hunting%20and%20investigation.%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FAzure-Sentinel%2FSecurity-Investigation-with-Azure-Sentinel-and-Jupyter-Notebooks%2Fm-p%2F432921%23U432921%22%20target%3D%22_blank%22%3ESecurity%20Investigation%20with%20Azure%20Sentinel%20and%20Jupyter%20Notebooks%20%E2%80%93%20Part%201%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FAzure-Sentinel%2FSecurity-Investigation-with-Azure-Sentinel-and-Jupyter-Notebooks%2Fm-p%2F483466%23U483466%22%20target%3D%22_blank%22%3ESecurity%20Investigation%20with%20Azure%20Sentinel%20and%20Jupyter%20Notebooks%20%E2%80%93%20Part%202%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E(3rd%20and%20final%20part%20coming%20shortly).%3C%2FP%3E%0A%3CP%3EAlso%20check%20out%20this%20article%20if%20Jupyter%20is%20new%20to%20you%26nbsp%3B%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FAzure-Sentinel%2FWhy-Use-Jupyter-for-Security-Investigations%2Fm-p%2F475729%23U475729%22%20target%3D%22_blank%22%3EWhy%20Use%20Jupyter%20for%20Security%20Investigations%3F%3C%2FA%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3E%26nbsp%3B%3C%2FP%3E%0A%3CP%3EAlso%20check%20out%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2Fuser%2Fviewprofilepage%2Fuser-id%2F252752%22%20target%3D%22_blank%22%3E%40shainw%3C%2FA%3E's%26nbsp%3B%20article%20on%26nbsp%3B%3CA%20href%3D%22https%3A%2F%2Ftechcommunity.microsoft.com%2Ft5%2FAzure-Sentinel%2FAzure-Sentinel-Performing-Additional-Security-Monitoring-of-High%2Fm-p%2F430740%23U430740%22%20target%3D%22_blank%22%3EAzure%20Sentinel%3A%20Performing%20Additional%20Security%20Monitoring%20of%20High-Value%20Accounts%3C%2FA%3E.%26nbsp%3B%3C%2FP%3E%0A%3CP%3EFeedback%20(including%20requests%20for%20future%20subjects)%20is%20very%20much%20welcome.%3C%2FP%3E%0A%3CP%3EIan%3C%2FP%3E%3C%2FLINGO-BODY%3E%3CLINGO-SUB%20id%3D%22lingo-sub-497371%22%20slang%3D%22en-US%22%3ERE%3A%20Using%20Jupyter%20Notebooks%20for%20CyberSecurity%20Hunting%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-497371%22%20slang%3D%22en-US%22%3EThis%20is%20invaluable%20information%2C%20I%20highly%20recommend%20it!%3C%2FLINGO-BODY%3E
ianhelle
Microsoft

We've start a blog companion to the #AzureSentinel Community.

I've recently posted 2 articles on using Jupter Notebooks in Azure Sentinel for hunting and investigation.

Security Investigation with Azure Sentinel and Jupyter Notebooks – Part 1 

Security Investigation with Azure Sentinel and Jupyter Notebooks – Part 2 

(3rd and final part coming shortly).

Also check out this article if Jupyter is new to you  Why Use Jupyter for Security Investigations? 

 

Also check out @shainw's  article on Azure Sentinel: Performing Additional Security Monitoring of High-Value Accounts

Feedback (including requests for future subjects) is very much welcome.

Ian

1 Reply
This is invaluable information, I highly recommend it!
Related Conversations
Tabs and Dark Mode
cjc2112 in Discussions on
46 Replies
Extentions Synchronization
Deleted in Discussions on
3 Replies
Stable version of Edge insider browser
HotCakeX in Discussions on
35 Replies
How to Prevent Teams from Auto-Launch
chenrylee in Microsoft Teams on
30 Replies
flashing a white screen while open new tab
Deleted in Discussions on
14 Replies
Security Community Webinars
Valon_Kolica in Security, Privacy & Compliance on
13 Replies