https://store-images.s-microsoft.com/image/apps.51975.ae31bf80-31f9-4e15-85e2-5b23bb92871c.c1c4324a-07fa-486a-b4eb-e5de6aa65077.b15f418f-efba-4442-9a13-6f4d673974fc

Security Threat Essentials (Preview)

Azure Sentinel, Microsoft Corporation

Security Threat Essentials (Preview)

Azure Sentinel, Microsoft Corporation

Security Threat Essentials

Important: This Microsoft Sentinel Solution is currently in public preview. This feature is provided without a service level agreement, and it's not recommended for production workloads. Certain features might not be supported or might have constrained capabilities. For more information, see Supplemental Terms of Use for Microsoft Azure Previews.

Note: There may be known issues pertaining to this Solution, please refer to them before installing.

This solution published by Microsoft is based on the continuous evaluation of threat campaigns and provides out-of-the-box security content that helps you to enhance your security posture. This solution leverages the following tables:

• AuditLogs

• AzureActivity

• CommonSecurityLog

• OfficeActivity

• SigninLogs

• VMConnection

Microsoft Sentinel Solutions provide a consolidated way to acquire Microsoft Sentinel content like data connectors, workbooks, analytics, and automations in your workspace with a single deployment step.

Analytic Rules: 6, Hunting Queries: 2

Learn more about Microsoft Sentinel | Learn more about Solutions