Apr 12 2019 08:30 AM
HI, quick question,
can i import all detection and queries from GitHub in one go. Seems like I have to do that manually.
Secondly, how do i get logs from Windows system without installing an agent.
Regards
Apr 15 2019 11:32 AM
Apr 22 2019 10:50 AM
Currently you have to manually import each one at a time, we're already looking into improving this. - No ETA at this time
As for your second question regarding Windows System logs - something will have to export the logs for you into Azure Sentinel. Examples given here : https://docs.microsoft.com/en-us/azure/sentinel/connect-data-sources#data-connection-methods