Jun 15 2021 12:20 PM
Following our networking schema, we now extend our Azure Sentinel Information Model (ASIM) guidance and release our DNS schema. We expect to follow suit with additional schemas in the coming weeks.
This release includes additional artifacts to ensure easier use of ASIM:
With a single click deployment and support for normalized content in analytic rules, we believe we will see an accelerated adaption of the Azure Sentinel Information Model.
Original Post: New Blog Post | Azure Sentinel Information Model DNS Schema and normalized content now public - Micr...