Microsoft Azure Sentinel – Use cases / MITRE ATT&CK

Azure Sentinel is your Security Information and Event Management system (SIEM), reinvented for the cloud era. Leveraging Azure and large-scale intelligence from decades of Microsoft security experience to work, it will make your threat detection and response smarter and faster with artificial intelligence (AI).

 

Sentinel ATT&CK aims to simplify the rapid deployment of a threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel.

 

https://youtu.be/hb6KeNOlP8Y
https://youtu.be/vjOEYyrkazI

 

Additional Reference : https://www.slideshare.net/CloudVillage/attcking-the-sentinel-deploying-a-threat-hunting-capability-on-azure-sentinel-using-sysmon-and-mitre-attck

https://www.slideshare.net/CloudVillage/attcking-the-sentinel-deploying-a-threat-hunting-capability-on-azure-sentinel-using-sysmon-and-mitre-attck