Native Azure Sentinel Data Connector to Ingest AWS CloudTrail Logs

My good friend, Sreedhar Ande, who was a guest on the recent Microsoft Security Insights podcast episode and is the author of the fabulous PowerShell script to automating the export of Azure Sentinel data to long-term storage, has come up with another fantastic offering.

Sreedhar has developed and released a data connector for ingesting AWS CloudTrail logs into a Log Analytics workspace.

Check it out here: andedevsecops/AWS-CloudTrail-AzFunc: Azure native Sentinel Data connector to ingest AWS CloudTrail Logs (

Make sure to read through the readme portion and make sure to follow the supplied installation and post-deployment steps.


[Want to discuss this further? Hit me up on Twitter or LinkedIn]

[Subscribe to the RSS feed for this blog]

[Subscribe to the Weekly Azure Sentinel Newsletter]


Leave a Reply