Posted by: kurtsh | May 22, 2023

BLOG: What should I log in my SIEM? (Microsoft Sentinel & potential Signal/Log sources)

imageOne of my favorite Microsoft Security Global Black Belts, Andrea Fisher, wrote a great post explaining what should be ingested into Microsoft Sentinel & why.

She’s got a table and some advice on the post below. Andrea has done 70+ Microsoft Sentinel engagements & you should probably heed her advice. Smile 


%d bloggers like this: