6452cbb564
Merge pull request #3821 from Azure/v-ntripathi/ImpervaWAFSolution
...
Imperva solution package.
2022-01-06 12:29:55 -08:00
0ffcdda583
Merge pull request #3797 from malowe101/master
...
Adding IntrotoKQL workbook
2022-01-06 15:04:59 -05:00
13771b5477
Rename Tools/Archive Log Tool/readme.md to Tools/Archive-Log-Tool/readme.md
2022-01-05 20:00:02 -05:00
06189b3b11
Rename Tools/Archive Log Tool/ArchiveLogsTool.json to Tools/Archive-Log-Tool/ArchiveLogsTool.json
2022-01-05 19:58:47 -05:00
bf77b6d189
Fixing mistake
2022-01-05 19:56:13 -05:00
bc9c495d30
Rename Archive Logs Tool.json to ArchiveLogsTool.json
2022-01-05 19:50:45 -05:00
9f7abd68ad
Update readme.md
2022-01-05 19:50:10 -05:00
8c0156efd3
Update readme.md
2022-01-05 19:47:31 -05:00
91673c0117
Update readme.md
2022-01-05 19:46:34 -05:00
a3fd851774
Adding Archive tool
2022-01-05 19:44:20 -05:00
0f7669a1eb
Merge pull request #3665 from rons4/master
...
SIGNL4 Solution Packaging
2022-01-05 14:05:27 -08:00
644c9554db
ASIM folder
2022-01-05 15:53:24 +02:00
8a20842cc0
Update sample data ingest tool to use Monitor Query library
2022-01-04 21:53:07 -06:00
ee97399b42
Revert "Revert "Merge branch 'master' of https://github.com/Azure/Azure-Sentinel ""
...
This reverts commit ff69f85224
2022-01-03 16:21:46 +02:00
ff69f85224
Revert "Merge branch 'master' of https://github.com/Azure/Azure-Sentinel "
...
This reverts commit c929df845a53e6c92e3e
2022-01-03 16:04:13 +02:00
965de7409e
Revert "Revert "Merge branch 'master' of https://github.com/rons4/Azure-Sentinel ""
...
This reverts commit 7f21eb8ef5
2022-01-03 11:27:36 +01:00
16a0de80c3
updated latest content
2022-01-03 01:59:27 +05:30
629d535fa6
updated latest content
2022-01-03 01:20:34 +05:30
e6eba1c17c
Imperva solution package.
2021-12-31 16:24:43 +05:30
85521596c6
Merge pull request #3792 from Azure/v-marimanda/HYASSolution
...
Update Package HYAS Solution
2021-12-30 18:25:23 +05:30
5840b723ed
Merge pull request #3767 from elforb/v-eliforbes/ccpConnectorUpdates
...
Solution Automation - CCP Connectors
2021-12-30 18:19:06 +05:30
17b5c3c0eb
Merge pull request #3378 from swiftsolves-msft/nate-toolsadx-updatejson
...
Update ADXSupportedTables.json
2021-12-28 14:43:11 +05:30
fefdcacf88
updated latest content
2021-12-27 15:46:01 +05:30
90cbd74275
Update Package HYAS Solution
2021-12-27 13:42:45 +05:30
edae24ce95
Merge pull request #3599 from elforb/v-eliforbes/solutionAutomationEmojiFix
...
Solution Automation - Remove Emoji Handling
2021-12-21 01:12:32 -08:00
472c0ce0d4
Solution Automation - CCP Connectors
2021-12-20 16:39:03 -08:00
2daaeb34dc
Solution Automation UI Rebranding
2021-12-15 14:27:18 -08:00
da3ea36830
Updated time to 30 min after creating LA Data Export Rules .zip
2021-12-13 19:04:59 -08:00
7f59ac0f99
Updated time to 30 min after creating LA Data Export Rules
2021-12-13 19:04:00 -08:00
f2678630d3
Added logic to update Table Schemas - added .zip
2021-12-13 18:54:21 -08:00
d2a3fce1d8
Added logic to update Table Schemas
2021-12-13 18:52:42 -08:00
1966146401
Merge pull request #3646 from malowe101/master
...
Adding IntrotoKQL Workbook Content
2021-12-13 15:04:49 -08:00
116d43dc57
Work already.
2021-12-13 17:58:20 -05:00
76fca65d7d
Fixing check again...
2021-12-13 17:32:15 -05:00
0df44b5624
Moving content to tools
2021-12-13 17:20:36 -05:00
0c1a1205b9
Merge pull request #3685 from elforb/v-eliforbes/datetimeReplacementFix
...
Solution Automation: DateTime Fix
2021-12-13 12:39:53 -08:00
fbf7845f4d
DateTime Fix
2021-12-10 11:15:46 -08:00
2be87780c9
SIGNL4 Packaging
...
SIGNL4 packaging.
2021-12-09 13:28:46 +01:00
d074093157
Solution Automation: Workspace Location Fix
2021-12-08 15:23:01 -08:00
faedf0fc3f
Merge branch 'master' of https://github.com/Azure/Azure-Sentinel into v-eliforbes/solutionAutomationEmojiFix
2021-12-08 13:07:51 -08:00
7fe8dbb0ce
updated latest content
2021-12-03 00:10:16 +05:30
62b38233c9
Solution Automation - Remove Emoji Handling
2021-12-01 15:35:07 -08:00
7b30770c51
branding changes
2021-11-29 10:58:59 -08:00
439d8d9f0a
branding changes
2021-11-29 10:57:15 -08:00
dcf8c72009
Merge pull request #3405 from elforb/v-eliforbes/extraAnalyticFieldAutomation
...
Solution Automation - Add Extra Analytic Fields
2021-11-10 14:42:25 -08:00
6022b924c2
Update README.md
2021-11-10 14:22:06 -08:00
98fb950607
ApiVersion Update
2021-11-09 10:46:12 -08:00
10bf2327fa
Solution Automation - Add Extra Analytic Fields
2021-11-08 15:39:45 -08:00
ced21b74ce
Update Solution README.md with metadata details ( #3246 )
...
* Update README.md
* Solution Metadata file details
* Update README.md
* Update README.md
* Example file for metadata
* Updated as per review comments
* Renamed planId to offerId
* Renamed planId to offerId
Co-authored-by: v-rucdu <v-rucdu@microsoft.com>
2021-11-05 10:06:10 -07:00
1d959527d1
Update ADXSupportedTables.json
...
recently ran script through my env found additional tables now fully supported in data export rule, tested and added them into json
DeviceNetworkInfo
EmailAttachmentInfo
EmailEvents
EmailUrlInfo
EmailPostDeliveryEvents
UserPeerAnalytics
2021-11-03 12:11:51 -04:00
ab9cd61208
Update stats.md
2021-11-02 13:04:27 -07:00
acdfd33ea4
Update stats.md
2021-11-02 12:25:22 -07:00
71db217f0f
Fixed playbook name issue
2021-10-29 18:21:52 +05:30
11d517e104
Renamed planId to OfferId
2021-10-29 18:17:12 +05:30
1222de47b1
Renamed workbook variable
2021-10-19 01:31:39 +05:30
bee82d33ea
Fix deployment issue for name property
2021-10-18 23:41:06 +05:30
c143b4ac3e
removed extra spaces
2021-10-18 22:22:37 +05:30
30983b48b7
Fixed dependency object issue
2021-10-18 20:21:02 +05:30
0d442b6262
Added version attribute in dependencies
2021-10-18 12:25:41 +05:30
e3b910d92b
Added missing metdata properties
2021-10-18 12:16:03 +05:30
c19cc75c55
Merge pull request #3203 from Azure/v-rucdu/SolutionToolTOReadMetadataFromDIfferentFile
...
Modified solution tool to use Metadata file
2021-10-14 01:43:23 +05:30
877a316431
Handled -ve scenarios
2021-10-14 00:18:08 +05:30
622bd46995
Update stats.md
2021-10-12 13:59:24 +05:30
b6cff01264
Modified solution tool to use Metadata file
2021-10-11 18:04:07 +05:30
cb4a7d3964
Merge pull request #3188 from Azure/v-rucdu/SolutionToolUpdate
...
Solution Tool enhancement to include Metadata object
2021-10-08 11:46:42 +05:30
c0bfa8593c
Renamed categories attribute
2021-10-07 20:09:44 +05:30
5cca8759b1
Solution Tool enhancement to include Metadata object
2021-10-07 18:42:03 +05:30
ad0b69ad17
Update Readme.MD
2021-10-05 11:41:32 -07:00
8673d1a31c
Updated badges img link
2021-10-04 16:20:38 +05:30
95bf4b98df
Merge pull request #3144 from ChuckWil/master
...
Replaced file - AIPMassDowngradeTestData_v4.csv
2021-09-30 14:06:29 -07:00
b638e6eb31
Delete WriteToLA - AIPMassDowngrade.ps1.csv
...
Replaced with file: AIPMassDowngradeTestData_v4.csv
2021-09-30 15:28:14 -05:00
812edd1c45
Add files via upload
...
Updated .csv filename to correspond with script.
2021-09-30 15:20:54 -05:00
3f9bf66ca9
Removed localization in URL
2021-09-29 16:58:16 -07:00
e78b4a69fc
Update README.md
2021-09-29 08:10:15 -07:00
f1e1e15e29
Update README.md
2021-09-29 08:07:03 -07:00
7a5d57b851
Updated readme and deploy to Azure
2021-09-29 08:05:17 -07:00
27ec3b4567
Merge pull request #2934 from averkinderen/Alex-ADX-Pipeline
...
Modified Migrate-LA-to-ADX.ps1 script to work in Azure DevOps Pipeline
2021-09-27 17:48:17 -07:00
bce53c92e0
fixed urls
...
removed lang en-us and updated ps script for sentinel dir url
2021-09-26 22:41:59 -04:00
ee72063328
externaldata lookup script
...
The following project tool provides a PS script to generate and lookup archived azure sentinel event logs that were created by data export rules to blob storage. Script generates the base KQL and includes and generates the SAS Uri Signatures needed for each blob in lookup time range. ~ See: https://swiftsolves.substack.com/p/azure-sentinel-data-export-to-azure
https://swiftsolves.substack.com/p/8766f774-2f47-4f08-9297-d460981cf904
https://swiftsolvesblog.blob.core.windows.net/images/genstoragectxkql-ps1-animation.gif
2021-09-26 22:30:06 -04:00
734e404c88
Merge pull request #3018 from elforb/v-eliforbes/multipleParsersFix
...
Fix Solution Generation for Multiple Parsers
2021-09-24 17:04:13 +05:30
317302b7d8
Merge pull request #2867 from Azure/signinlogsquery-fix
...
Multiple Query fixes
2021-09-23 14:18:37 -07:00
da0b51306b
Update README.md
2021-09-23 13:03:08 -05:00
57cddf2e3c
Add files via upload
2021-09-23 13:01:01 -05:00
61b8e0315b
Merge pull request #2366 from FlyingBlueMonkey/master
...
WHOIS/Registry Data Access Protocol Azure Function
2021-09-21 21:59:15 -07:00
1b73ac02a3
Update README.md
2021-09-21 20:03:34 -05:00
d8598b0313
Update README.md
2021-09-21 20:02:04 -05:00
6fc4f2aa13
Update README.md
2021-09-21 20:01:19 -05:00
899a2a4c30
Update README.md
2021-09-21 19:39:32 -05:00
5a01494300
Add files via upload
2021-09-21 19:38:50 -05:00
900d81357e
Delete AIPRule.PNG
2021-09-21 19:31:37 -05:00
23f3eb69ce
Add files via upload
2021-09-21 19:30:27 -05:00
451293245a
Updated Package
2021-09-21 11:13:20 -07:00
50a606d486
Updated AzureDataExplorer Exception details
2021-09-21 11:06:09 -07:00
043d338834
Merge pull request #2945 from piaudonn/patch-5
...
Adding the Az.EventHub module
2021-09-21 10:52:25 -07:00
ff8ea8c4ed
Merge branch 'master' into signinlogsquery-fix
2021-09-17 18:30:32 -07:00
b6067f45cc
updating logic to new fields OperationNameValue
2021-09-17 18:18:33 -07:00
3b694504d8
Updated README
2021-09-15 18:02:45 -07:00
fc57e7a50f
Update README.md
2021-09-14 10:15:50 -05:00
b07dfd16db
Update README.md
2021-09-14 09:22:06 -05:00
d094bb4a38
Fix Solution Generation for Multiple Parsers
2021-09-13 14:49:57 -07:00
09284f2f63
Merge branch 'Azure:master' into master
2021-09-08 17:29:43 -05:00
2f2bfaa8bb
Add files via upload
2021-09-08 17:17:21 -05:00
e0e6f00c73
Delete WriteToLA - AIPMassDowngrade.ps1.csv
2021-09-08 17:16:46 -05:00
358b3ba413
Adding the Az.EventHub module
...
This is a dependincy for the New-AzEventHubNamespace cmdLet used in the New-EventHubNamespace function.
This fonction will fail if that module isn't installed.
2021-08-31 12:21:05 -04:00
b4b4a97667
pipeline
2021-08-31 15:24:02 +10:00
78f62b6b8a
Merge pull request #2748 from IllusiveNetworks-Labs/Illusive
...
Illusive
2021-08-27 10:32:33 +05:30
d430bfc5f9
Update README.md
2021-08-26 15:06:44 -05:00
834674e2f0
Update README.md
...
Format
2021-08-26 15:00:45 -05:00
66343a177a
Add files via upload
2021-08-26 14:48:13 -05:00
3469719982
Update README.md
2021-08-26 14:46:06 -05:00
ddca37f3a1
Update README.md
...
Changed to include more feature/capability areas.
2021-08-26 14:32:53 -05:00
4b697c05e6
Update README.md
2021-08-26 13:04:32 -05:00
67e02da45a
Update README.md
...
Correct image path
2021-08-25 22:03:16 -05:00
48b65172be
Update README.md
2021-08-25 21:53:26 -05:00
fe192f5123
Anomaly Simulator moved to Sentinel Tools
2021-08-25 21:30:58 -05:00
181de292a3
Delete Tools/Simulators/Anomalies/Unusual-Mass-Downgrade-AIP-Label directory
2021-08-25 21:22:50 -05:00
5e50c94b63
Updated README.MD
2021-08-25 16:06:17 -07:00
bd67ff3b80
Added new script to create only tables on ADX
2021-08-25 15:50:25 -07:00
faa650388f
Updated README.MD with instructions
2021-08-25 15:49:57 -07:00
845acc443a
Update README.md
2021-08-25 15:33:38 -05:00
50990d6234
Update README.md
2021-08-25 13:46:13 -05:00
7948ff9b42
Add files via upload
2021-08-25 13:44:57 -05:00
ab7699560d
Merge pull request #2536 from mburrough/mburrough-AlertRuleAction-script
...
Add bulk Alert Rule Action PowerShell script sample
2021-08-19 21:28:04 -07:00
68f56dd255
reverting to OperationName as verified
2021-08-17 13:55:42 -07:00
da5a2ed8ad
modified package using powershell 7
2021-08-12 19:23:23 +05:30
b38617c554
created package and made review comment changes
2021-08-12 12:40:32 +05:30
de95ee53de
Update README.md
2021-08-11 17:03:32 +03:00
a03a7a9c33
Update README.md
2021-08-11 17:02:26 +03:00
4ea995649c
Update and rename readmemd.txt to README.md
2021-08-11 16:50:45 +03:00
01f488f0b8
removing readme from scrip
2021-08-11 16:36:28 +03:00
29001a5b9b
Adding readme sgeneration and better reference to templates
2021-08-11 15:53:50 +03:00
c5a25f5c82
Fixing argument description
2021-08-11 12:34:37 +03:00
e4e967d0dd
Adding Parser yaml 2 ARM tool lite
2021-08-11 12:30:18 +03:00
34380c09bf
Update README.md
2021-08-10 11:40:11 -07:00
580262dafd
Update README.md
2021-08-10 11:38:57 -07:00
de78be7e5b
Merge branch 'Azure:master' into master
2021-08-10 11:23:43 -07:00
aedd5c361e
Fixed an accidental typo
2021-08-06 11:44:55 +02:00
514aef4f6f
Fixed a weird "feature" which requires the description field in the solutions yaml to be single quotes.
2021-08-06 10:33:52 +02:00
03a382307a
Updated README with better explanation
2021-07-27 12:49:26 +02:00
a469fee118
Adding new Sentinel onboarding ARM template
2021-07-27 11:31:37 +02:00
76567e8269
Added deployment package with latest code fixes
2021-07-14 15:03:10 -07:00
98333337d2
Updated variable name
2021-07-14 15:02:11 -07:00
df105eb918
Merge pull request #2654 from anigan/anigan-fixLAtoADX
...
Issue 2652: Fixing issues with comparing LA tables to supported tables
2021-07-14 14:50:49 -07:00
ade6e55026
Deleted Zip
2021-07-14 14:47:04 -07:00
8bdd55b110
deleting zip
2021-07-15 03:12:58 +05:30
7d386ca706
creating a fresh ZIP
2021-07-15 02:58:39 +05:30
0657da2653
removing zip
2021-07-15 02:54:05 +05:30
e80e849289
Removed Locale
2021-07-14 14:11:03 -07:00
33b398e9a7
explicityly defining nugetPackageLocation to a string type
2021-07-15 02:30:27 +05:30
57031e90a7
Fixes issue in JSON
2021-07-14 13:59:51 -07:00
c3bc66eb25
Added Deployment Package
2021-07-14 13:52:40 -07:00
9762c4f597
Fixed AzureDataExplorer
2021-07-14 13:50:59 -07:00
d12e14cc87
adding the missing \ in the nugetlocationpath
2021-07-13 18:20:57 +05:30
78ffb5c334
defining $nugetPackageLocation as a global variable
2021-07-13 17:58:32 +05:30
750e05c520
reverting
2021-07-12 09:34:58 -07:00
7e7fec18dc
Updated README.MD
2021-07-12 08:31:01 -07:00
55aea07414
Updated deployment package
2021-07-12 08:27:11 -07:00
6f3967491d
Finding values in supported tables array with case sensitive
2021-07-12 08:23:27 -07:00
aa5bc3b052
Added SecurityEvent Table to supported tables
2021-07-12 08:22:34 -07:00
9fb7da1a46
$nugetPackageLocation was never defined and is not required to be defined
...
$decision is used but is not passed as a parameter. It is required.
2021-07-10 21:45:25 +05:30
ec9a2ca1b2
Updated date
...
Updated last edit date
2021-06-30 12:57:30 -05:00
38c58550cd
Minor Migrate-LA-to-ADX.ps1 updates
...
- Fixed issue where $ADXTables.Trim() could fail by adding ToString().Trim()
- Moved Try/Catch in New-AdxRawMappingTables to just around Invoke-KustoCLI as this would be only section where an error might occur that we would want to hide.
- Added test to make sure ADXSupportedTables.json is available
- Completed adding basic help for all functions.
- Updated main parameter help to make sure parameters matched the parameter names.
- Made the unsupported table output easier to read.
- fixed EventHub to be Event Hub and similar for for various product features to match Microsoft.com documentation.
2021-06-30 12:39:28 -05:00
cc251e33a8
Update LAW Filtering Method
2021-06-29 14:08:16 -07:00
5d987949e6
Solution Packaging Fix
2021-06-29 09:44:36 -07:00
8d7b1b36d0
Updated last modified date
2021-06-28 15:56:28 -07:00
eb03e11f44
Package updated
2021-06-28 14:46:05 -07:00
e3dd38553a
deleted unwanted logic
2021-06-28 14:13:44 -07:00
711a320883
Added logic to verify PowerShell Version
2021-06-28 12:13:53 -07:00
9031a5600f
Updated deployment package with latest code fixes
2021-06-26 00:30:32 -07:00
214a1b6f69
Removed extra Write-host
2021-06-26 00:29:47 -07:00
8f4eae86bb
Updated deployment package
2021-06-26 00:25:34 -07:00
54a7af40a9
Fixed coded issue
2021-06-26 00:24:38 -07:00
f333785724
Added downloadable package
2021-06-26 00:03:16 -07:00
3e0b88c10a
Updated Migrate LA to ADX script
2021-06-26 00:02:09 -07:00
362c8c551b
Merge pull request #1768 from TobiKr/master
...
Added PowerShell that creates alert rules from rule templates
2021-06-24 12:02:01 -07:00
0a2f4d388f
Leaderboard update
2021-06-22 17:07:05 -07:00
ca47768bbb
Merge pull request #2435 from elforb/v-eliforbes/watchlistAutomation
...
Watchlist Automation
2021-06-22 11:30:27 -07:00
c3b80d8050
Update README.md
2021-06-21 22:44:57 -07:00
c0453d0701
Add files via upload
2021-06-21 22:44:10 -07:00
aeba354476
Create README.md
2021-06-21 22:43:50 -07:00
e13fb94e0c
Create README.md
2021-06-21 22:43:03 -07:00
147b3c5be4
Leaderboard update
2021-06-21 16:06:05 -07:00
5af35de0bf
Leaderboard update
2021-06-21 15:06:00 -07:00
6ac07f1748
fixed new line issue
2021-06-16 14:02:43 -07:00
92a99178f5
Updated typo
2021-06-16 14:00:40 -07:00
d1b7e279e5
Updated README instructions
2021-06-16 13:57:52 -07:00
58fbf6e6bc
Updated README
2021-06-16 13:45:53 -07:00
bd807bd275
Updated README
2021-06-16 13:16:38 -07:00
b229190dd8
Added download icon
2021-06-16 13:15:41 -07:00
d72df3062e
Updated Typo in README
2021-06-16 10:20:35 -07:00
c9090470f8
Updated README Instructions
2021-06-15 21:09:46 -07:00
abfe903798
Merge pull request #2485 from Azure/dicolanl-59
...
Updating Deploy buttons and links part 2
2021-06-16 13:48:43 +12:00
4a23af9be0
Updating Deploy buttons and links part 2
2021-06-16 01:40:49 +00:00
cc64fdb1a0
Removed localization
2021-06-15 18:02:37 -07:00
97f4d7fc91
Removed en-us in links
2021-06-15 17:56:19 -07:00
afcbbc576b
Added script in zip format to download from tools
2021-06-15 17:35:12 -07:00
ebf77f4c70
Removed hardcoded values for testing
2021-06-15 17:34:27 -07:00
4f30898934
Updated README aka.ms link
2021-06-15 17:33:55 -07:00
43917ba6aa
Added aka.ms link to download the tool
2021-06-15 17:12:34 -07:00
4c11fba522
Fixed bug in creating DataConnection rule
2021-06-15 13:34:09 -07:00
01686954a2
aka.ms link
2021-06-15 09:43:54 -07:00
e4a8edb269
Added comments to script file
2021-06-14 21:40:27 -07:00
7d7053f085
Added script to integrate Azure Data Explorer using PowerShell Script
2021-06-14 21:29:36 -07:00
ba511af373
Added Supported Tables Json
2021-06-14 21:27:49 -07:00
654c872a1c
Updated README.MD
2021-06-14 21:24:54 -07:00
bfcc3a7335
Created README.MD and updated with Instructions
2021-06-14 20:20:05 -07:00
4c98a3c186
Merge pull request #2402 from Azure/v-rucdu/PRValidationFixesForSolutionsFolder
...
Extension of PR Validations to solutions folder
2021-06-13 22:18:59 -07:00
2cad1a602c
Merge pull request #2281 from t-shaviv/shaharBranch2
...
Azure Activity columns alignments
2021-06-13 09:57:18 -07:00
3a11ce8b70
Merge pull request #2462 from elforb/v-eliforbes/solutionAutomationUpdate2
...
Update Solution Automation Documentation + Minor Fixes
2021-06-11 10:18:29 -07:00
3b9282204d
Remove URL Locale
2021-06-11 10:11:53 -07:00
e0c3428c60
Common Issue: YAML Conversion
2021-06-10 16:26:53 -07:00
7af75762c8
Minor Template Creation Fixes
2021-06-10 16:17:32 -07:00
63b4a5fab9
Add Instructions for Setup, TTK Validation + Extra Common Issue
2021-06-10 16:17:16 -07:00
548f342528
Leaderboard update
2021-06-10 11:02:43 -07:00
2236761be6
Watchlist Example Template
2021-06-08 10:02:38 -07:00
771b2886eb
Watchlist text fix
2021-06-08 10:02:17 -07:00
8a90d3f02c
Dev/generic parser ( #2410 )
...
* Custom parser deployer
2021-06-08 12:05:14 +03:00
cf52659535
Update Watchlist Tab Text+Uri
2021-06-04 10:07:32 -07:00
3f151ac0d1
Update config.txt
2021-06-04 17:49:33 +05:30
d6a0fbde60
Update SampleDataPath.cs
2021-06-04 17:46:51 +05:30
c480159566
Update config.txt
2021-06-04 17:27:58 +05:30
2875e51a4b
Handled validation for parsers under solutions folder
2021-06-04 17:17:13 +05:30
3b7aaa3eef
Base Watchlist Automation
2021-05-27 13:22:20 -07:00
d7058a0fb1
Created Registry Data Access Protocol (RDAP)
...
As top level domains (and domains in general) have increased, there is a need to be able to lookup information about domains. This project is designed to solve this need (in an albeit limited use case for now) by retrieving domain(s) from Azure Sentinel / Log Analytics, querying the RDAP network for registration information, and then writing that resolution information back in to Azure Sentinel / Log Analytics.
2021-05-27 11:40:30 -07:00
c72129459a
Readme Example Update + Added Note
2021-05-20 10:33:40 -07:00
f64a2499bd
Fix Playbook UIDef Label Handling
2021-05-20 10:31:56 -07:00
2217cb6ecf
Handle operationIds in Custom Connectors
2021-05-20 10:31:22 -07:00
0c6c4fecb2
Merge branch 'master' into shaharBranch2
2021-05-19 10:12:21 +03:00
d97d696fbf
Merge pull request #2232 from pkhabazi/ThreatIntelligence-connector-SentinellAllinOne
...
Threat intelligence connector for sentinel all in one
2021-05-18 20:22:50 -07:00
25ff63717c
Leaderboard update
2021-05-18 12:01:57 -07:00
771a6610c1
Merge branch 'master' of https://github.com/Azure/Azure-Sentinel into v-eliforbes/solutionAutomationUpdate
2021-05-14 13:13:56 -07:00
242b8255a4
Leaderboard update
2021-05-14 10:02:27 -07:00
1bfc7a1c43
Merge branch 'master' into shaharBranch2
2021-05-13 11:10:21 +03:00
e8b01c74e0
Parameter Replacement Fixes
2021-05-12 11:28:29 -07:00
0b1d624b91
fixed AlertRulePayload
2021-05-12 19:20:51 +03:00
2c215dbb9f
Update README.md
2021-05-10 16:15:52 -07:00
0b155fac34
Solution Automation ( #2213 )
...
* Solution Automation
* Remove URL Locale
* Update Pathing in Automation-runner
* Fix connection id variable reference
* Move Tool Folder and Rename
* Add Version Input + Rename Script
* Tool Readme with Description+Instructions+Troubleshooting
* Send all generated files to Package folder
* Update Example Input + Misc. Cleanup
* Update Readme json comment style
* Update readme commenting
* Condense Readme Input Commenting
* Added Common Issues: Parameter References + Outputs
* Input format fix
* Input file format update
Co-authored-by: Eli Forbes <v-elforb@microsoft.com>
2021-05-10 16:08:35 -07:00
1c73e89f52
Leaderboard update
2021-05-09 16:25:44 -07:00
dcb3dbc486
Leaderboard update
2021-05-08 08:01:43 -07:00
66f954a9eb
Leaderboard update
2021-05-07 23:02:40 -07:00
d1ac912023
Adding ThreatIntelligence to dataconnectors
2021-04-30 10:04:48 +02:00
bace93befc
Enabling fusion by default
2021-04-06 11:50:20 -07:00
ccf1abd9ef
Resolved a description field parsing issue
...
Fixes some description fields not being imported
2021-03-26 17:45:05 +01:00
10f0610f40
type in linked template
...
fixed a typo in linked template
2021-03-17 11:15:00 +01:00
91f0a23520
Localization links fixed
2021-03-15 10:32:20 +03:00
ecdfb87089
Rule migration resource uploads
2021-03-15 10:02:47 +03:00
10c34da5d7
Added new image and modified markdown file
2021-03-12 14:38:42 +11:00
1fe26fd7de
Added RuleMigration folder and files
2021-03-12 11:35:48 +11:00
c0b63f7a6c
added YAML rule import sample
2021-03-08 19:27:58 +01:00
c4c357d814
Merge branch 'master' of https://github.com/Azure/Azure-Sentinel
2021-03-08 19:21:07 +01:00
v-sumdh
alexkarabas
Matt Lowe
v-jayakal
Ofer Shezaf
Scott Addie
rons4
v-rucdu
NikTripathi
NikTripathi
vmanojreddy
Eli Forbes
Sreedhar Ande
Sreedhar Ande
Preeti Krishna
Eli Forbes
swiftsolves-msft
v-maudan
Shain
Chuck Wilcox
Matt Egen
Ashwin Patil
Ashwin Patil
Pierre Audonnet
alexandre verkinderen
Caroline Palha
Ofer Shezaf
Yaron Fruchtmann
0xffhh
Javier Soriano
Anirudh Gandhi
Joel Stidley
Azuresentinelgithub
Matt Burrough
Sarah Young
dicolanl
Yaron
t-shaviv
elforb
Pouyan Khabazi
Vishal Kumar
Tiander Turpijn
iwafula025
JeremyT
