Microsoft Sentinel customers have been expecting this update and now it’s arrived. MITRE techniques are now available for selection in the Microsoft Sentinel rule creation process.
When you select a primary tactic in the Rule creation process, the techniques will display as selections.
The techniques chosen will display in the Incident when it is generated.
The MITRE techniques are also supported throughout Microsoft Sentinel, including Automation and Hunting.
With this new feature in place, new and updated techniques can be delivered continuously.
=========================
[Want to discuss this further? Hit me up on Twitter or LinkedIn]
[Subscribe to the RSS feed for this blog]
[Subscribe to the Weekly Microsoft Sentinel Newsletter]
[Subscribe to the Bi-Weekly Defender for Cloud Newsletter]
[Learn KQL with the Must Learn KQL series and book]
You must log in to post a comment.