Index
Symbols
+ (Add) operator, KQL, 169
/ (Divide) operator, KQL, 169
-- (Equals) operator, KQL, 169–170
> (Greater) operator, KQL, 169
>- (Greater or Equal) operator, KQL, 169–170
< (Less) operator, KQL, 169
<- (Less or Equal) operator, KQL, 169
% (Modulo) operator, KQL, 169
* (Multiply) operator, KQL, 169
!- (Not equals) operator, KQL, 169
!in (Not equals to any of the elements) operator, KQL, 169
− (Subtract) operator, KQL, 169
A
AAD user, Logic Apps, 115
access control, 15
Add (+) operator, KQL, 169
adversaries, knowledge of, 8
aggregation reference, KQL (Kusto Query Language), 172
alerts
and bookmarks, 97
analysts
“single pane of glass,” 7
SOC (security operations center), 5
analytic ...
Get Microsoft Azure Sentinel: Planning and implementing Microsoft s cloud-native SIEM solution now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.