User Profile

m0l0ch

Copper Contributor

Joined Mar 13, 2019

2 Posts4 LikesLikes received

View All Badges

User Widgets

Recent Discussions

How to add 'Microsoft-Windows-Sysmon' events to table 'SysmonEvent'?
Hi everyone. How to add 'Microsoft-Windows-Sysmon' events to table 'SysmonEvent'? I've try to setup it in my env w/ Win10, but Sysmon logs collected to 'Events' table only. What I did wrong? Environment: - Azure Sentinel instance - Data collector Security Events - Minimal. - Advanced settings: * Connected Sources Windows Agent (64 bit) installed on Win10 * Data Windows events 'Microsoft-Windows-Sysmon/Operational'
Mar 13, 2019 Place Microsoft Sentinel
5.6KViews
3likes
4Comments
Re: Azure Sentinel Webinar
Hi Ryan! Do you have plans to host this Webinar for another regions\time zones? If not, could you please record and share video from Webinar?
Mar 13, 2019 Place Microsoft Sentinel
1.6KViews
1like
0Comments

Recent Blog Articles

No content to show