User Profile

Inwafula

Microsoft

Joined 8 years ago

30 Posts42 Likes

View All Badges

User Widgets

Recent Discussions

Re: Broken playbook on GitHub
Thanks, now fixed
Oct 25, 2021 Place Microsoft Sentinel
811Views
1like
0Comments

Recent Blog Articles

Supercharging Security Copilot with Logic Apps: Best practices and pro tips
Integrating Microsoft Security Copilot with Azure Logic Apps enables security teams to automate investigations, orchestrate fast incident response, and unify workflows across the modern enterprise. B...
Sep 24, 2025 Place Microsoft Security Copilot Blog
504Views
2likes
0Comments
Using parameterized functions with KQL-based custom plugins in Microsoft Security Copilot
In this blog, I will walk through how you can build functions based on a Microsoft Sentinel Log Analytics workspace for use in custom KQL-based plugins for Security Copilot. The same appr...
Jun 02, 2025 Place Microsoft Security Copilot Blog
807Views
0likes
0Comments
Boost SOC automation with AI: Speed up incident triage with Security Copilot and Microsoft Sentinel
The Solution This solution leverages AI and automation to speed up incident triage by providing automated response to an incident while infusing AI reasoning into the triage process, allowing the a...
Jan 27, 2025 Place Microsoft Security Copilot Blog
4.7KViews
2likes
0Comments
Hunt for identity-based threats with Security Copilot and Microsoft Sentinel
Enter Microsoft Sentinel and Security Copilot, a powerful duo that brings great value to your security operations. Microsoft Sentinel's User and Entity Behavior Analytics (UEBA) capabilities are desi...
Jan 20, 2025 Place Microsoft Security Copilot Blog
2.2KViews
1like
1Comment
Leveraging ASIM-based KQL plugins in Microsoft Security Copilot for investigation scenarios
Microsoft Security Copilot enhances the capabilities of Microsoft Sentinel by providing an AI-driven assistant that can help interpret complex hunting query outputs in Log Analytics. One of the stand...
Dec 17, 2024 Place Microsoft Security Copilot Blog
875Views
0likes
0Comments
Harnessing the power of KQL Plugins for enhanced security insights with Copilot for Security
Accelerate value realization from customized insights in Copilot for Security by tapping into enrichments generated by Microsoft Sentinel UEBA using KQL plugins.
Aug 20, 2024 Place Microsoft Security Copilot Blog
3.6KViews
1like
0Comments
Use the bulk update feature with Microsoft Sentinel Watchlists
Watchlists within Microsoft Sentinel are commonly used to work in conjunction with Analytics rules to achieve several use-cases that mostly focus on ruling in and ruling out alerts or incidents. Lev...
Apr 17, 2022 Place Microsoft Sentinel Blog
9.1KViews
1like
3Comments
Announcing the search and filter UI enhancements in Watchlists
We are pleased to announce two enhancements to the Watchlist blade that will improve your search and filtering experience.
Apr 12, 2022 Place Microsoft Sentinel Blog
2.2KViews
0likes
0Comments
Common scenarios using Watchlists (with query examples)!
Watchlists in Microsoft Sentinel allow you to correlate data with events in your Microsoft Sentinel environment. Watchlists can be used for searching, detection rules, threat hunting, and...
Mar 17, 2022 Place Microsoft Sentinel Blog
20KViews
4likes
0Comments
Single Sign On Support for authentication in Microsoft Sentinel Notebooks
With this post we announce an improvement in the Sign on experience for MSTICPy Notebooks as well as simplification of the content within the “Getting Started Guide for Microsoft Sentinel ML N...
Jan 14, 2022 Place Microsoft Sentinel Blog
4.1KViews
1like
0Comments