Since it seems I’ve become all things KQL for our security platforms (which I don’t mind at all, btw), I thought I’d step outside the Sentinel realm for a moment and share some recent releases for using KQL with Microsoft 365 Defender.
Here’s some awesome video content learning…
M365D KQL Basics:
M365D Advanced Hunting:
=========================
[Want to discuss this further? Hit me up on Twitter or LinkedIn]
[Subscribe to the RSS feed for this blog]
[Subscribe to the Weekly Microsoft Sentinel Newsletter]
[Subscribe to the Bi-Weekly Defender for Cloud Newsletter]
[Learn KQL with the Must Learn KQL series and book]
You must log in to post a comment.