Oct 21 2019
11:33 PM
- last edited on
Dec 23 2021
04:50 AM
by
TechCommunityAP
Oct 21 2019
11:33 PM
- last edited on
Dec 23 2021
04:50 AM
by
TechCommunityAP
Was just wondering, if its worth importing converted sigma rules into sentinel to use for detection. Does sentinel already have these rules by default in its intelligence?
Oct 22 2019 01:04 PM
Oct 22 2019 08:06 PM
Hi gary,
I am aware of it. The reason i asked is because ianhelle of MSFT did create that notebook conversion. So i was wondering if it would have been included into Sentinels intelligence, and by me importing converted sigma rules this would be a duplication.