all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Finding new alerts in log investigations | Azure log analytics | KQL language | Azure Sentinel

Add to bookmarks
April 1, 2022, 6:41 p.m. | /u/Agent_B99

cybersecurity www.reddit.com

Hello,

I was doing some investigations in Azure log analytics and when I searched more info on one alert I discovered more alerts that where not on the Incidents page of Azure Sentinel.

The alert type was "Unknown" or "Silent" but the Severity was High .

Is this because of the Analytic rules ?

What can you find during a log investigation that an Analytic rule can miss ?

Thanks

alerts analytics azure cybersecurity investigations language log sentinel

Visit resource

More from www.reddit.com / cybersecurity

MITRE says state hackers breached its network via Ivanti zero-days an hour ago | www.reddit.com
amp att cybersecurity mitre +2
Chinese Government Poses 'Broad and Unrelenting' Threat to U.S. Critical Infrastructure, FBI Director Says an hour ago | www.reddit.com
cybersecurity
All versions of Crush FTP are vulnerable 4 hours ago | www.reddit.com
action april crushftp cybersecurity +10
Cyber Awareness 5 hours ago | www.reddit.com
adjust asking can certificate +9
Security awareness VS human risk management - why the term you use matters 7 hours ago | www.reddit.com
awareness computers cybersecurity focus +14
USPS Scam SMS - Link Discussion 7 hours ago | www.reddit.com
cybersecurity domain domain name link +10
Top cybersecurity stories for the week of 04-15-24 to 04-19-24 8 hours ago | www.reddit.com
ciso cyber cyber security cybersecurity +8
Cyberattack Takes Frontier Communications Offline 12 hours ago | www.reddit.com
com communications cyberattack cybersecurity +2
Antivirus: Essential tool or outdated tech for Cyber Pros? 13 hours ago | www.reddit.com
antivirus antivirus software community cyber +18

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Security Solution Architect

@ Civica | London, England, United Kingdom
View on infosec-jobs.com

Information Security Officer (80-100%)

@ SIX Group | Zurich, CH
View on infosec-jobs.com

Cloud Information Systems Security Engineer

@ Analytic Solutions Group | Chantilly, Virginia, United States
View on infosec-jobs.com

SRE Engineer & Security Software Administrator

@ Talan | Mexico City, Spain
View on infosec-jobs.com
View more jobs