top of page
READ ABOUT CUTTING EDGE TECHNOLOGIES, AND CLOUD COMPUTING.
Scroll down to read about Cloud Technologies.
Blogs on Futuristic Technologies, Cloud Computing, Azure Cloud, Azure Security, Azure Monitor, Azure Sentinel, Azure Log Analytics, Azure Automation, Azure Defender, KQL and many other things.
LEARN AND GROW
Learn and Grow
Search
Keshav Jain
Sep 20, 20242 min read
Facing a Scenario Where You Need to Create a Custom Table in Log Analytics (or Sentinel) but Don’t Have Sample Logs in JSON Format?"
Have you encountered a scenario where you need to create a custom table in Log Analytics (or Sentinel) to collect custom logs? One of the...
50 views0 comments
Keshav Jain
Sep 19, 20241 min read
Have you noticed empty fields in the Common Security Event Format (CEF) logs when collecting them in Microsoft Sentinel?
After setting up log forwarding to syslog servers and once the logs start flowing into Sentinel, it's common to see entries with many...
23 views0 comments
Keshav Jain
Jul 12, 20241 min read
Configuring the "Citrix ADC" Data Connector in Microsoft Sentinel.
Issue: Configuring the "Citrix ADC" Data Connector We followed the guide on configuring the Sentinel Data connector for "Citrix ADC"...
72 views0 comments
Keshav Jain
Mar 29, 20242 min read
Automating Playbook Execution on Specific Days with Microsoft Sentinel and Logic Apps.
#MicrosoftSentinel #SOAR #Email In the realm of Security Orchestration, Automation, and Response (SOAR), timing is often crucial. There...
22 views0 comments
Keshav Jain
Feb 15, 20241 min read
Microsoft Log Analytics Workspace: The Case missing column of 'msg_s' from the table AzureDiagnostics.
When setting up Microsoft Sentinel using the Microsoft Log Analytics Workspace, you might stumble upon a missing piece – the 'msg_s' ...
86 views0 comments
Keshav Jain
Jan 18, 20242 min read
Optimizing Microsoft Sentinel (SIEM) Environment
In the ever-evolving landscape of cybersecurity, the importance of a well-optimized Sentinel Environment cannot be overstated. As threats...
94 views0 comments
Keshav Jain
Sep 22, 20232 min read
Microsoft Sentinel - Retaining the telemetry for Longer duration.
When setting up Microsoft Sentinel, there's a common question: How do we store data for a really long time? Some compliances and...
46 views0 comments
Keshav Jain
Jun 21, 20233 min read
Are you using “Azure Monitor Logs Data Export” for exporting log analytics data to storage account ?
From a compliance standpoint, it's important to keep backups of the telemetry data stored in Azure Sentinel and Log Analytics workspace....
46 views0 comments
Keshav Jain
Jun 14, 20233 min read
Microsoft Sentinel - Security Incident Closure Reports
As a member of a Security Operations Center (SOC), one of the key responsibilities is to generate regular reports on incidents. These...
116 views0 comments
Keshav Jain
Jun 14, 20232 min read
KQL query for removing the pipe symbol ("|") from strings.
In this blog post, we will explore how to remove the trailing pipe symbol ("|") from strings using Kusto Query Language (KQL). We'll...
156 views0 comments
Keshav Jain
Feb 9, 20233 min read
Microsoft Sentinel - Collecting Common Event Format (CEF) via AMA Data connector.
Microsoft Sentinel offers the Common Event Format (CEF) via the AMA connector, allowing for the quick filtering and uploading of logs in...
298 views0 comments
Keshav Jain
Dec 16, 20221 min read
Collecting CEF log using Azure Monitor Agent (AMA agent). Unable to install CEF collector on RHEL8.
We were working on configuring the Data Connector "Common Event Format (CEF) via AMA" in Microsoft Sentinel . While running the CEF...
141 views0 comments
Keshav Jain
Oct 10, 20221 min read
Error "Failed to list classic administrators of subscription" while deploying the Service offer.
Below listed error might appear while deploying the ARM template in MSSP environment for managing the Sentinel using the Azure...
29 views0 comments
Keshav Jain
Aug 4, 20221 min read
Granted permission “Sentinel Reader” or “Sentinel Responder” but the Sentinel is not visible ?
I often ran in scenario where I granted permission “Log Analytics Reader” and “Microsoft Sentinel Reader” or “Microsoft Sentinel...
64 views0 comments
Keshav Jain
Jun 22, 20222 min read
Monitoring the health of the Microsoft Sentinel Data connectors
Monitoring the health of the Microsoft Sentinel Data connector Data is sent to the Microsoft Sentinel workspace by configuring the...
585 views1 comment
Keshav Jain
Jun 1, 20221 min read
Microsoft Defender Vulnerability Management
With the launch of ‘Microsoft Defender Vulnerability Management’, Microsoft has added more power to the Defender suite. Now,...
292 views0 comments
Keshav Jain
Feb 28, 20222 min read
Managing cross Tenant Sentinel Workspace using the Azure Light House capabilities.
This blog talks about configuring the test environment for the Azure Lighthouse and Sentinel. Here I am sharing my learning. This is...
265 views0 comments
Keshav Jain
Dec 1, 20211 min read
Integrating Microsoft Defender with Microsoft Sentinel
Learn how to integrate the Microsoft Defender Data Connectors in Microsoft Sentinel. https://www.youtube.com/watch?v=hZ1CxNRpFWM&t=1726s
80 views0 comments
Keshav Jain
Nov 10, 20211 min read
Identifying the TorNodes IP address using the Azure Sentinel.
Tor IP addresses are tunneled through other devices on the Tor network with "Onion Routing". This prevents a user's real IP address from...
1,526 views4 comments
Keshav Jain
Nov 8, 20211 min read
Azure Sentinel will now be known as 'Microsoft Sentinel'
Name changes that Microsoft has announced at Ignite 2021. Azure Sentinel Microsoft Sentinel Azure Defender and Azure...
63 views0 comments
bottom of page