e89c99466d
Rerun validations
2021-11-08 10:22:47 -08:00
7455fb2a7a
Merge pull request #3275 from Azure/AADAdditionforPrivAccounts
...
Adding AAD related hunting query
2021-11-08 08:39:24 -08:00
83ed56b7b5
Fixing how dvcaction param works ( #3399 )
2021-11-08 12:12:05 +02:00
5a8ac1ee25
doh
2021-11-08 10:59:58 +02:00
105b44402a
Updating Empty Schema location
2021-11-08 10:55:07 +02:00
e96cfc53df
Network Sesion ARM templates
2021-11-08 10:46:48 +02:00
475a129f75
Merge pull request #3372 from javiersoriano/patch-6
...
Update README.md in Sentinel Training Lab
2021-11-08 00:17:57 -08:00
60acf01fce
[Data connectors] Aws S3 Script- Add Sentinel tag when creating a new resources in AWS ( #3391 )
...
[Data connectors] Aws S3 Script- Add Sentinel tag when creating a new resources in AWS.
it will be easier for us to write an offboarding script in the future because we can get AWS resources by a specific tag..
AWS Command:
aws resourcegroupstaggingapi get-resources --tag-filters Key=Operator,Values=Microsoft_Sentinel_Automation_Script
2021-11-08 09:54:40 +02:00
33228c7b4b
Merge pull request #3185 from ep3p/patch-2
...
Join Kind leftouter might be preferred
2021-11-07 21:21:23 -08:00
f2cab376bd
Update NonDCActiveDirectoryReplication.yaml
...
Updated the version number.
2021-11-07 21:12:09 -08:00
989fa5b019
Merge branch 'master' into patch-2
2021-11-07 21:10:37 -08:00
b7828f93f6
Merge pull request #3389 from Azure/BackUpWithAlertCorrelationAddition
...
Adding query for review
2021-11-07 12:19:41 -08:00
aac7efe4f9
Adding parameters to YAML ( #3369 )
...
* Adding parameter:disabled to ASimNetwork*
* Adding Parameters to YAML code:
starttime:datetime=datetime(null)
, endtime:datetime=datetime(null)
, srcipaddr_has_any_ipv4_prefix:dynamic=dynamic([])
, dstipaddr_has_any_ipv4_prefix:dynamic=dynamic([])
, dstportnumber:int=int(null)
, url_has_any:dynamic=dynamic([])
, httpuseragent_has_any:dynamic=dynamic([])
, hostname_has_any:dynamic=dynamic([])
, dvcaction:dynamic=dynamic([])
, disabled:bool=false
2021-11-07 12:42:29 +02:00
4a1267c17b
[Data connectors] Aws-S3 script update ( #3360 )
2021-11-07 10:05:34 +02:00
814865b689
Retiring CMMC & Zero Trust (TIC3.0) Workbooks
...
These have been updated and expanded into Microsoft Sentinel Solutions in Content Hub. Retiring the legacy versions of the workbooks
2021-11-05 19:30:54 -04:00
8453410b64
Add eventGroupingSettings
2021-11-05 15:40:23 -07:00
6dcda7ee6a
Readding with changes
2021-11-05 15:10:01 -07:00
9ffad045a3
Adding query for review
2021-11-05 14:47:39 -07:00
7afb3ce1af
Add missing analytics fields
2021-11-05 14:25:12 -07:00
694fb674ad
Defender IOT Description Update
2021-11-05 10:30:40 -07:00
ced21b74ce
Update Solution README.md with metadata details ( #3246 )
...
* Update README.md
* Solution Metadata file details
* Update README.md
* Update README.md
* Example file for metadata
* Updated as per review comments
* Renamed planId to offerId
* Renamed planId to offerId
Co-authored-by: v-rucdu <v-rucdu@microsoft.com>
2021-11-05 10:06:10 -07:00
1a4b4a1330
Merge pull request #3383 from elforb/v-eliforbes/defenderIotUpdate
...
Defender IOT - Analytics Update
2021-11-05 09:30:31 -07:00
aa2070ace2
Merge pull request #3380 from YoavDaniely/patch-3
...
Updated private preview to preview in "echo"
2021-11-04 21:34:56 -07:00
9e6f70b114
Defender IOT - Analytics Update
2021-11-04 14:23:37 -07:00
67e39f2cbe
Merge pull request #3381 from thmcelro/runcommand-fixes
...
Update run command join key
2021-11-04 09:37:41 -07:00
577e15db68
Update RunCommandUEBABreach.yaml
2021-11-04 16:18:17 +00:00
b262d535cb
Update run command join key
...
- The join key merged the IP address and UPN, this is not required and the join can be performed on just the UPN.
2021-11-04 16:15:38 +00:00
0aa346d9a7
Updated private preview to preview in "echo"
2021-11-04 16:50:10 +02:00
1e8ee205c1
Merge pull request #3373 from kingwil/htfix2
...
Audit policy logic update
2021-11-03 16:37:34 +02:00
e4b7cc4142
Merge pull request #3374 from Azure/v-ntripathi/CMMCPlaybookSolution
...
update
2021-11-03 06:01:32 -07:00
ed0f6c6b18
update
2021-11-03 18:26:01 +05:30
33f0e28213
Audit policy logic update
2021-11-03 12:46:32 +00:00
0c8085b279
Update README.md
...
fixing type on link to exercise 2
2021-11-03 13:36:53 +01:00
76b74c6033
Update README.md
2021-11-03 10:44:34 +02:00
ab7166e370
Merge pull request #3368 from Azure/dev/normalizaton/product-rename
...
Rename product
2021-11-03 10:43:56 +02:00
9b8247c42e
Rename product
2021-11-03 10:40:18 +02:00
e3e4e78d3e
Merge pull request #3356 from Azure/anknar/BugFix_Fortigate-Custom-Connector
...
Fortigate Bugfix - Update to function app code for custom connector
2021-11-02 21:42:23 -07:00
84c1e11fd2
Merge pull request #3349 from Azure/v-manoj/CreatingPackageInfoSecGlobal
...
Solution Package for InfoSecGlobal
2021-11-02 18:25:03 -07:00
862403af17
Update ADORetentionReducedto0:
...
- Changed to look for reduction to 1 (lowest possible value)
or where reduced by > half.
- Renamed query to remove reference to 0 now no longer applicable.
Change prompted by user feedback.
2021-11-02 14:16:55 -07:00
ab9cd61208
Update stats.md
2021-11-02 13:04:27 -07:00
acdfd33ea4
Update stats.md
2021-11-02 12:25:22 -07:00
59db0f8211
Update mainTemplate.json
2021-11-02 17:15:05 +05:30
1425d71aa8
Update MicrosoftWindowsEventFullDeployment.json
2021-11-02 08:02:11 +02:00
f3a7d8c2d4
Merge pull request #3358 from Azure/v-ntripathi/sailpointSolutionPackage
...
solution package
2021-11-02 10:20:34 +05:30
49149b0890
solution package
2021-11-02 10:10:07 +05:30
c1b9e8b211
Merge pull request #3237 from cyberpion-yizhar/cyberpion-add-acknowledgment-fields
...
add is_acknowledged, acknowledged_by, acknowledged_reason, acknowledg…
2021-11-01 15:24:40 -07:00
d11d6c709d
Merge pull request #3357 from elforb/v-eliforbes/tenableIOFix
...
TenableIO Parser Naming Fix
2021-11-01 14:16:00 -07:00
9a911e420b
removing column from project
2021-11-01 14:14:19 -07:00
d107fce2f4
updating duplicate templateIds
2021-11-01 14:05:27 -07:00
56dcf5e5a9
TenableIO Parser Naming Fix
2021-11-01 13:53:19 -07:00
Eli Forbes
Pete Bryan
Yaron
aprakash13
sagamzu
thbanasi
gitj121
v-jayakal
Ashwin Patil
Thomas McElroy
YoavDaniely
haneuvir
NikTripathi
kingwil
Javier Soriano
Ofer Shezaf
Ofer Shezaf
Pete Bryan
NikTripathi
v-rucdu