9d4ae54cf9
Replacing Notebooks submodule with README.md with redirection to notebooks repo
...
# Conflicts:
# Notebooks~HEAD
2022-03-09 15:04:16 -08:00
b8d9f60849
Created RDAP Query
...
Registration Data Access Protocol (RDAP) Azure Function and Azure Sentinel Query
2021-05-25 14:00:34 -07:00
a0128bd63f
Renamed to azuredeploy.json
...
Was receiving this error: There was an error downloading the template from URI 'https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Playbooks/Get-SOCActions/azuredeploy.json '. Ensure that the template is publicly accessible and that the publisher has enabled CORS policy on the endpoint. To deploy this template, download the template manually and paste the contents in the 'Build your own template in the editor' option below.
Renamed to address the error and allow for deployment.
2021-05-21 13:37:20 -06:00
5662818193
Update Notebooks 202105
2021-05-03 16:17:36 -07:00
ea73b4295c
rename
2021-03-04 16:35:14 +02:00
7be85eea13
Update notebook 202103
2021-03-01 10:44:32 -08:00
397ada278c
Update Notebooks 202101
2021-01-11 10:56:44 -08:00
b5bb6aeaba
Update notebooks 20201204
2020-12-04 09:32:15 -08:00
fd32aad785
Update Notebooks 2020-10
2020-10-12 16:16:59 -07:00
9d1bbd5b31
Update Notebooks for 202009
2020-09-10 09:17:31 -07:00
c4ed7d0ef3
Update notebooks submodule
2020-08-03 08:59:27 -07:00
acfeea39d1
Update notebooks
2020-07-08 16:50:32 -07:00
3c73516b39
Update Notebooks submodule
2020-06-02 17:11:53 -07:00
1c3ed009ac
Adding Azure-Sentinel-Notebooks as submodule of Azure-Sentinel
2020-04-30 10:47:38 -07:00
283d15d509
remove Notebooks folder and its content
2020-04-30 10:08:39 -07:00
503e6413ba
Updated Readme to point users to new GitHub location
2019-11-01 16:22:01 -07:00
8af92bd7bf
added nbwidgets to load properly
2019-10-16 13:57:17 +09:00
ee74fc6256
Fix typo in command
2019-10-09 13:17:54 -07:00
12b9666f3d
Address feedback to use config.json to get tenantid and workspaceid.
2019-10-09 13:14:10 -07:00
f8cb8da3c7
Enable highlighting of neigbouring nodes on 'click' event.
...
Also add 'azure-cli-core' package dependency.
2019-10-08 17:26:07 -07:00
1efc7d4025
Initial commit for User Security Metadata notebook
...
This notebook will provide a step-by-step instrucstions on how to consume and understand the analytics data in Sentinel.
2019-10-07 14:25:58 -07:00
903d07b36d
Changes based on comments
2019-10-03 13:18:44 -07:00
9ae4c99f28
Hunting Bookmark Library
2019-10-01 16:56:31 -07:00
98580f7db4
Drop AAD as well
2019-09-23 13:54:53 -07:00
5b46e1e23a
Enable notebooks end-to-end test and clean up python modules
2019-09-20 16:55:32 -07:00
136b237916
Update Anomaly Lookup due to Azure Cli changes
2019-08-28 11:08:44 -07:00
122a922fdb
Anomaly lookup query update
2019-08-26 16:12:05 -07:00
050a2b6ab1
Adding Anomaly Lookup notebook
2019-07-31 11:16:22 -07:00
ec68aaba62
Renaming for PR
2019-07-30 14:38:05 -07:00
ed356a799c
Python modules update for GA
2019-07-30 09:08:55 -07:00
d25eead4ee
Remove notebooks
2019-06-14 11:33:57 -07:00
0af727477d
Update Anomaly Lookup query and flow
2019-06-12 09:45:30 -07:00
efe16f8d00
Add Forensics notebooks
2019-06-10 14:40:23 -07:00
df24aff12f
Merge pull request #172 from Azure/zhzhao8888/feature/forensics_mod
...
Initial check in for forensics python modules
2019-06-07 16:08:20 -07:00
070313cafd
Add short documentation to modules
2019-06-07 14:44:40 -07:00
593cc115a1
Initial check in for forensics python modules
2019-06-05 15:57:11 -07:00
ed682b155f
Import, browse, convert and run Sigma rules in Azure Sentinel
2019-05-31 11:14:47 -07:00
6e452f8108
Changes for part 3 of blog
2019-05-13 09:52:51 +03:00
b47cc9a9af
Removed wording
...
Removed wording regarding large enterprises...
2019-04-24 17:15:18 -07:00
283e80754a
change all notebooks to 3.6
2019-04-23 17:17:49 -07:00
b63baac09d
Adding a couple of interesting queries I threw together while doing r… ( #142 )
...
* Adding a couple of interesting queries I threw together while doing research
* minor reformatting. put smaller table on LHS of join.
2019-04-15 13:57:44 +01:00
af1c58a953
Partial update of example notebook for blog.
...
Adding generic setup mini-notebook to remove repetetive code from start of notebooks.
2019-04-09 16:19:12 -07:00
53f4d0bf3c
Updates to sample notebook for blog
2019-04-05 19:43:59 -07:00
c516357aac
Add files via upload
2019-03-26 17:29:34 -07:00
8f7c2aa036
Add files via upload
2019-03-26 17:28:54 -07:00
8d949c16cd
Add files via upload
2019-03-26 17:28:28 -07:00
f7346d6ccb
Adding notebook for PowerShell
2019-03-19 17:24:21 -07:00
c57c96b9b2
Bug/reliability fixes for RSA based on new demo environment data and … ( #118 )
...
* Bug/reliability fixes for RSA based on new demo environment data and alert formats.
Added two reliable demo notebooks - Demo - Guided Hunting - Linux-Windows-Office and Demo - Guided Investigation - Process-Alerts - both reference V4 environment.
Change pip installs to always reference user locations - DSVM prevents machine installs if user is not admin.
* Couple of omissions
2019-03-04 11:47:46 +00:00
d14ca15b78
Update README.md
2019-02-28 09:13:22 -08:00
7bf3b4580a
Add files via upload
2019-02-27 16:41:48 -08:00
Ian Hellen
Matt Egen
rinure
Zhipeng Zhao
ehudk-msft
yoshiomura
Sridhar Periyasamy
zhzhao8888
juliango2100
shainw