Oct 21 2020 01:52 AM
Hi,
I imported logs from CrowdStrike to Azure Sentinel. I see a large number of logs but what can I do next?
I want to be able to search by hosts in Entity Behavior and check all activities by the host but at this moment Entity Behavior has only from Controllers Domain, how can I save logs from log analytics CEF CrowdStrike to Entity Behavior?
Oct 22 2020 10:46 AM