Microsoft Azure Sentinel: Planning and implementing Microsoft s cloud-native SIEM solution

Chapter 6. Jupyter Notebooks

By Ian Hellen,Principal Software EngineerMicrosoft Threat Intelligence Center

Jupyter is an interactive development and data manipulation environment hosted in a browser. The open API supported by Azure Sentinel allows you to use Jupyter Notebooks to query, transform, analyze, and visualize Azure Sentinel data. This makes Notebooks a powerful addition to Azure Sentinel, and it is especially well-suited to ad-hoc investigations, hunting, or customized workflows.

Introduction

Jupyter Notebooks are an evolution from IPython (an interactive Python shell) and IPython continues to be the default Jupyter kernel. A Notebook is a sequence of input and output cells. You type code in an input cell, and the Jupyter server executes ...

Get Microsoft Azure Sentinel: Planning and implementing Microsoft s cloud-native SIEM solution now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Microsoft Azure Sentinel: Planning and implementing Microsoft s cloud-native SIEM solution by Yuri Diogenes, Nicholas DiCola, Jonathan Trull

Chapter 6. Jupyter Notebooks

Introduction

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly