In my previous blog post, I covered getting started with Azure Sentinel, including how to configure and connect it to a data source. This week I want to talk about the Kusto Query Language (KQL), Azure Workbooks and Playbooks. Let’s get started with KQL. Kusto Query Language The Kusto Query Language (KQL) is a read-only... Continue Reading →
Getting started with Azure Sentinel: Part 1
Security is critical for organizations of all sizes and being able to have visibility across all systems, devices and applications is becoming more important everyday. Azure Sentinel provides a single solution for threat detection, alerting, security analytics and response management across devices, applications and other cloud providers. How Does Azure Sentinel work? Azure Sentinel collects... Continue Reading →
Creating a Custom Virtual Machine Image in Azure
Recently I needed to create a custom virtual machine (VM) image in Azure. The Azure Marketplace offers many different templates for operating system (OS) deployments, but sometimes there are situations where you may want to create your own custom image with specific changes to the OS or VM. In this blog post, I will demonstrate... Continue Reading →
How to customize favorites in the Azure portal
The default Azure favorites menu is good, but what if you want to personalize it with your own preferred Azure resources? In this blog post I’ll show you how to add or remove an Azure resource from the favorites menu. Let’s start with adding a resource to your favorites menu. Click ‘All Services’ in the... Continue Reading →
Dave McCollough 