Script: Sentinel Data Lake Table Management
Microsoft Sentinel’s data lake story is quietly powerful: you get fast, 90-day Analytics (Shortterm) for hunting and detections, plus scalable, …
Kusto
Windows Service Monitoring at Scale using Cloud Native Azure Components
Recently, I was challenged to build a scalable, cloud native solution that should be used for monitoring of critical Windows …
Troubleshooting & Monitoring of Log Ingestion with Data Collection Rules
As I have outlined in the series of blogs, Azure Logging is based on Data Collection Rules (DCRs) and Azure …
Optimize Costs using Auxiliary Logs for Verbose Logging
Today, we use logging for many purposes including security hunting with SIEM (Sentinel), troubleshooting, performance telemetry, compliance reporting – but …
Azure Monitor alerting with Azure Resource Graph data – using Azure LogAnalytics integration
If you need to get an Azure Monitor alert using Azure Resource Graph data, this can easily be accomplished using …
Azure Backup: Do I have resources NOT protected by backup?
This blog will show you how you can automate an overview using Kusto queries against Azure Resource Graph (ARG) to …