Skip to Main Content
The Definitive Guide to KQL: Using Kusto Query Language for operations, defending, and threat hunting
book

The Definitive Guide to KQL: Using Kusto Query Language for operations, defending, and threat hunting

by Mark Morowczynski, Rod Trent, Matthew Zorich
June 2024
Intermediate to advanced content levelIntermediate to advanced
480 pages
15h 11m
English
Microsoft Press
Content preview from The Definitive Guide to KQL: Using Kusto Query Language for operations, defending, and threat hunting

Chapter 4

Operational Excellence with KQL

After completing this chapter, you will be able to:

  • Understand the benefits of using KQL in IT operations

  • Learn to proactively detect and mitigate security threats, secure the cloud infrastructure, and enhance incident response capabilities

  • Catalog the key features and syntax of KQL

  • Integrate with machine learning algorithms

  • Create custom functions

  • Identify the steps for creating and executing advanced hunting queries with KQL

  • Leverage sample queries and online resources to learn from experts and improve skills

  • Bookmark the common security challenges and solutions in the cloud

  • Embed security checks and scans into DevOps pipelines

  • Query and validate infrastructure and application configurations

  • Harden ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

CompTIA Security+ SY0-701

CompTIA Security+ SY0-701

Sari Greene
SC-200 Microsoft Security Operations Analyst

SC-200 Microsoft Security Operations Analyst

ACI Learning, Anthony Sequeira, Lauren Deal

Publisher Resources

ISBN: 9780138293482