Azure-Sentinel/Tools/AzureDataExplorer/ADXSupportedTables.json

{
    "SupportedTables": [
		"AADDomainServicesAccountLogon",
		"AADDomainServicesAccountManagement",
		"AADDomainServicesDirectoryServiceAccess",
		"AADDomainServicesLogonLogoff",
		"AADDomainServicesPolicyChange",
		"AADDomainServicesPrivilegeUse",
		"AADManagedIdentitySignInLogs",
		"AADNonInteractiveUserSignInLogs",
		"AADProvisioningLogs",
		"AADServicePrincipalSignInLogs", 
		"ABSBotRequests",
		"ACSBillingUsage",
		"ACSSMSIncomingOperations",
		"ADAssessmentRecommendation",
		"ADFActivityRun",
		"ADFPipelineRun",
		"ADFTriggerRun",
		"ADReplicationResult",
		"ADSecurityAssessmentRecommendation",
		"ADTDigitalTwinsOperation",
		"ADTEventRoutesOperation",
		"ADTModelsOperation",
		"ADTQueryOperation",
		"ADXCommand",
		"ADXQuery",
		"AegDeliveryFailureLogs",
		"AegPublishFailureLogs",
		"Alert",
		"AmlOnlineEndpointConsoleLog",
		"ApiManagementGatewayLogs",
		"AppCenterError",
		"AppPlatformSystemLogs",
		"AppServiceAppLogs",
		"AppServiceAuditLogs",
		"AppServiceConsoleLogs",
		"AppServiceFileAuditLogs",
		"AppServiceHTTPLogs",
		"AppServicePlatformLogs",
		"AuditLogs",
		"AutoscaleEvaluationsLog",
		"AutoscaleScaleActionsLog",
		"AWSCloudTrail",
		"AzureAssessmentRecommendation",
		"AzureDevOpsAuditing",
		"BehaviorAnalytics",
		"BlockchainApplicationLog",
		"BlockchainProxyLog",
		"CommonSecurityLog",
		"ComputerGroup",
		"ContainerImageInventory",
		"ContainerInventory",
		"ContainerLog",
		"ContainerNodeInventory",
		"ContainerServiceLog",
		"CoreAzureBackup",
		"DatabricksAccounts",
		"DatabricksClusters",
		"DatabricksDBFS",
		"DatabricksInstancePools",
		"DatabricksJobs",
		"DatabricksNotebook",
		"DatabricksSecrets",
		"DatabricksSQLPermissions",
		"DatabricksSSH",
		"DatabricksWorkspace",
		"DeviceNetworkInfo",
		"DnsEvents",
		"DnsInventory",
		"Dynamics365Activity",
		"EmailAttachmentInfo",
		"EmailEvents",
		"EmailUrlInfo",
		"EmailPostDeliveryEvents",
		"ExchangeAssessmentRecommendation",
		"FailedIngestion",
		"FunctionAppLogs",
		"Heartbeat",
		"HuntingBookmark",
		"IntuneAuditLogs",
		"IntuneDevices",
		"IntuneOperationalLogs",
		"KubeEvents",
		"KubeHealth",
		"KubeMonAgentEvents",
		"KubeNodeInventory",
		"KubePodInventory",
		"KubeServices",
		"LAQueryLogs",
		"McasShadowItReporting",
		"MicrosoftAzureBastionAuditLogs",
		"MicrosoftDataShareReceivedSnapshotLog",
		"MicrosoftDataShareSentSnapshotLog",
		"MicrosoftHealthcareApisAuditLogs",
		"NWConnectionMonitorPathResult",
		"NWConnectionMonitorTestResult",
		"OfficeActivity",
		"PowerBIDatasetsTenant",
		"PowerBIDatasetsWorkspace",
		"PowerBIDatasetsWorkspacePreview",
		"SCCMAssessmentRecommendation",
		"SCOMAssessmentRecommendation",
		"SecurityAlert",
		"SecurityBaseline",
		"SecurityBaselineSummary",
		"SecurityDetection",
		"SecurityIncident",
		"SecurityEvent",
		"SecurityIoTRawEvent",
		"SecurityNestedRecommendation",
		"SecurityRecommendation",
		"SfBAssessmentRecommendation",
		"SfBOnlineAssessmentRecommendation",
		"SharePointOnlineAssessmentRecommendation",
		"SignalRServiceDiagnosticLogs",
		"SigninLogs","SPAssessmentRecommendation",
		"SQLAssessmentRecommendation",
		"SucceededIngestion",
		"SynapseBigDataPoolApplicationsEnded",
		"SynapseBuiltinSqlPoolRequestsEnded",
		"SynapseGatewayApiRequests",
		"SynapseIntegrationActivityRuns",
		"SynapseIntegrationPipelineRuns",
		"SynapseIntegrationTriggerRuns",
		"SynapseRbacOperations",
		"SynapseSqlPoolDmsWorkers",
		"SynapseSqlPoolExecRequests",
		"SynapseSqlPoolRequestSteps",
		"SynapseSqlPoolSqlRequests",
		"SynapseSqlPoolWaits",
		"Syslog",
		"ThreatIntelligenceIndicator",
		"UpdateRunProgress",
		"UpdateSummary",
		"UserPeerAnalytics",
		"Usage",
		"Watchlist",
		"WindowsEvent",
		"WindowsFirewall",
		"WVDCheckpoints",
		"WVDConnections",
		"WVDErrors",
		"WVDFeeds",
		"WVDManagement"
	]
}