Understanding Microsoft Teams Data Schema in Azure Sentinel - Analyst / Researcher View
In SIEM world it's important to understand and analyze the data that you want to ingest and not only to collect and aggregate log data generated throughout the organization’s technology infrastructure, from host systems and applications to network and security devices such as firewalls, networks, proxy, appliances, gateways, switchers, routers and systems filters. Millions of people are using Microsoft Teams as their secure, productive and mobile collaboration & communication tool, today Pete Bryan from Microsoft Threat Intelligence Center and Hesham_Saad from Microsoft CyberSecurity Global Black Belt will detail Microsoft Teams schema and data structure in Azure Sentinel!
