data collection

35 Topics

Ingest, Archive, Search, and Restore Data in Microsoft Sentinel
Now in public preview: search jobs, basic ingestion tier, archive tier, and data restoration! Microsoft Sentinel is adding a great new suite of features to help with managing the data life cycle.
Matt_Lowe
Feb 23, 2022 Place Microsoft Sentinel Blog
194KViews
5likes
14Comments
Create, Edit, and Monitor Data Collection Rules with the Data Collection Rule Toolkit
Looking for a way to centrally create, monitor, and modify data collection rules for Microsoft Sentinel? Check out this new workbook to see how this can achieve just that.
Matt_Lowe
May 02, 2023 Place Microsoft Sentinel Blog
26KViews
4likes
3Comments
Designs for Accomplishing Microsoft Sentinel Scalable Ingestion
Looking to accomplish scalable ingestion for Microsoft Sentinel with the Azure Monitor Agent? Check out this blog to get a high-level overview of options that are available today.
Matt_Lowe
Feb 13, 2023 Place Microsoft Sentinel Blog
25KViews
9likes
5Comments
Help Protect your Exchange Environment With Microsoft Sentinel
TL;DR; Sentinel + Exchange Servers or Exchange Online = better protected New Microsoft Sentinel security solution for Exchange Online and on premises servers : Microsoft Exchange Security! This content is very useful for any organization concerned about keeping the highest security posture as possible and be alerted in case of suspicious activities for those critical items.
nilepagn
Aug 09, 2023 Place Microsoft Sentinel Blog
19KViews
6likes
12Comments
Architectural Guidance – Azure Monitor private links with Microsoft Sentinel
Using private links on log analytics workspace while having Sentinel deployed on same workspace.
mahmoudmsft
Dec 08, 2022 Place Microsoft Sentinel Blog
16KViews
3likes
0Comments
Comprehensive coverage and cost-savings with Microsoft Sentinel’s new data tier
Microsoft is excited to announce the public preview of a new data tier Auxiliary Logs and Summary Rules in Microsoft Sentinel to further increase security coverage for high-volume data at an affordable price.
Yael_Bergman
Aug 20, 2024 Place Microsoft Sentinel Blog
16KViews
3likes
2Comments
Split Microsoft Sentinel Tables with Multi-Destination Data Collection Rules
Learn how a new functionality in Azure Monitor enables data collection rules to split tables as they bring data in.
Matt_Lowe
Jun 29, 2023 Place Microsoft Sentinel Blog
15KViews
6likes
5Comments
What's New: CrowdStrike Falcon Data Replicator V2 Data Connector is now Generally Available!
The CrowdStrike Falcon Data replicator V2 Data connector is now available as a part of the CrowdStrike Falcon Endpoint Protection solution in Microsoft Sentinel Content Hub. The connector leverages an Azure Function – based backend to poll and ingest CrowdStrike Falcon Data Replicator logs at scale. Some of the advantages this new V2 data connector offers are:
PrateekTaneja
Feb 04, 2024 Place Microsoft Sentinel Blog
15KViews
0likes
0Comments
Microsoft Sentinel Support for Ingestion-Time Data Transformations
Log Analytics has recently announced two new features: ingestion time transformations and Data Collection Rules (DCR)-based custom logs. This is a huge milestone not only for Log Analytics, but also for Microsoft Sentinel, as it enables a wide range of scenarios like filtering, masking, enrichments, and parsing; allowing Sentinel's customers to optimize storage costs, improve their security analytics, and enjoy better performance and ease of use.
Oded_Weber
Mar 07, 2022 Place Microsoft Sentinel Blog
14KViews
2likes
5Comments
Using Cribl Stream to ingest logs into Microsoft Sentinel
How to ingest syslog data into Sentinel using Cribl Stream
mahmoudmsft
Jul 01, 2024 Place Microsoft Sentinel Blog
11KViews
3likes
3Comments