The Advanced SIEM Information Model (ASIM): Now Built into Microsoft Sentinel

  Рет қаралды 5,255

Microsoft Security Community

Microsoft Security Community

Күн бұрын

Wednesday, March 9, 2022 | 08:00AM - 9:00AM (PST, Redmond Time)
Microsoft Sentinel Webinar | The Advanced SIEM Information Model (ASIM): Now Built into Microsoft Sentinel
Presenter(s): Ofer Shezaf
Description:
Working with multiple data types and sources is a challenge: Understanding different schemas and creating a unique set of analytics rules, workbooks, and hunting queries for each data source. Now that ASIM is built into Microsoft Sentinel, we will show you how to best use ASIM to use Microsoft Sentinel without worrying about each source's details. Use queries across all your data sources and write simpler and more robust analytic rules and hunting queries.
Advanced Security Information Model (ASIM) security content: docs.microsoft.com/en-us/azur...
To ensure you hear about future Microsoft Sentinel webinars and other developments, make sure you join our community by going to aka.ms/SecurityCommunity
#MicrosoftSentinel #ASIM #Normalization

Пікірлер: 4
@georgeollis
@georgeollis 2 жыл бұрын
This was a super helpful video. Great benefits!
@stubstunner
@stubstunner 2 жыл бұрын
Does ASIM come enabled or do I have to do something special to search the ASIM tables?
@MicrosoftSecurityCommunity
@MicrosoftSecurityCommunity 2 жыл бұрын
Hi Dan, please direct your questions directly to Microsoft Sentinel forum at aka.ms/MicrosoftSentinelCommunity. Someone from our engineering team will get back to you. Thank you for watching!
@rafaelruales6871
@rafaelruales6871 2 жыл бұрын
it looks like they have deployed already information model parsers to LA workspaces, you should be able to search them
Create Large Watchlists up to 500MB in Microsoft Sentinel
2:25
Create Large Watchlists up to 500MB in Microsoft Sentinel
Microsoft Security Community
Рет қаралды 1,2 М.
Extend and Manage ASIM: Developing, Testing and Deploying ASIM Parsers | Microsoft Sentinel Webinar
58:05
Extend and Manage ASIM: Developing, Testing and Deploying ASIM Parsers | Microsoft Sentinel Webinar
Microsoft Security Community
Рет қаралды 2,6 М.
Heartwarming: Stranger Saves Puppy from Hot Car #shorts
00:22
Heartwarming: Stranger Saves Puppy from Hot Car #shorts
Fabiosa Best Lifehacks
Рет қаралды 21 МЛН
1❤️
00:17
1❤️
Nonomen ノノメン
Рет қаралды 13 МЛН
Cách đi bóng dính chân như Messi! #actionc #short #football #footballshorts
00:14
Cách đi bóng dính chân như Messi! #actionc #short #football #footballshorts
Action C Mini
Рет қаралды 135 МЛН
DO YOU HAVE FRIENDS LIKE THIS?
00:17
DO YOU HAVE FRIENDS LIKE THIS?
dednahype
Рет қаралды 93 МЛН
Transforming Data at Ingestion Time in Microsoft Sentinel | Microsoft Sentinel Webinar
51:23
Transforming Data at Ingestion Time in Microsoft Sentinel | Microsoft Sentinel Webinar
Microsoft Security Community
Рет қаралды 4,5 М.
Azure Sentinel Webinar: The Information Model: Understanding Normalization in Azure Sentinel
59:29
Azure Sentinel Webinar: The Information Model: Understanding Normalization in Azure Sentinel
Microsoft Security
Рет қаралды 8 М.
Azure Data Factory, Azure Databricks, or Azure Synapse Analytics? When to use what.
40:05
Azure Data Factory, Azure Databricks, or Azure Synapse Analytics? When to use what.
SQLBits
Рет қаралды 62 М.
Deep Dive into Security Orchestration, Automation and Response (SOAR) using Microsoft Azure Security
54:41
Deep Dive into Security Orchestration, Automation and Response (SOAR) using Microsoft Azure Security
Microsoft Security Community
Рет қаралды 7 М.
Become a Jupyter Notebooks Ninja - MSTICPy Fundamentals to Build Your Own Notebooks
56:15
Become a Jupyter Notebooks Ninja - MSTICPy Fundamentals to Build Your Own Notebooks
Microsoft Security Community
Рет қаралды 4 М.
Data normalization and transformation | Microsoft Sentinel in the Field #12
17:23
Data normalization and transformation | Microsoft Sentinel in the Field #12
Microsoft Security
Рет қаралды 1,7 М.
Event-Driven Architectures Done Right, Apache Kafka • Tim Berglund • Devoxx Poland 2021
50:53
Event-Driven Architectures Done Right, Apache Kafka • Tim Berglund • Devoxx Poland 2021
Devoxx Poland
Рет қаралды 191 М.
Joe Biden full press conference (July 11, 2024)
58:40
Joe Biden full press conference (July 11, 2024)
WFAA
Рет қаралды 336 М.
Azure Sentinel Webinar: Deep Dive into Azure Sentinel Normalizing Parsers and Normalized Content
59:12
Azure Sentinel Webinar: Deep Dive into Azure Sentinel Normalizing Parsers and Normalized Content
Microsoft Security
Рет қаралды 4,6 М.
Audit Services
50:23
Audit Services
Microsoft Security Community
Рет қаралды 150
I Phone Vs Nokia Phone 😈 Who Is best✅️ #Your favorite Phone 📱 Comment #Youtubeshorts
0:20
I Phone Vs Nokia Phone 😈 Who Is best✅️ #Your favorite Phone 📱 Comment #Youtubeshorts
EG Axternal
Рет қаралды 333 М.
Ryzen 9 9950X и 9900X - первые тесты Zen 5. Новый король CPU?
19:40
Ryzen 9 9950X и 9900X - первые тесты Zen 5. Новый король CPU?
PRO Hi-Tech
Рет қаралды 64 М.
Для заказа Алисы напишите нам в инстаграм @electronics_latvia.#Алиса #колонка #розыгрыш
0:18
Для заказа Алисы напишите нам в инстаграм @electronics_latvia.#Алиса #колонка #розыгрыш
Electronics_latvia
Рет қаралды 1,3 МЛН
Я УКРАЛ ТЕЛЕФОН В МИЛАНЕ
9:18
Я УКРАЛ ТЕЛЕФОН В МИЛАНЕ
Игорь Линк
Рет қаралды 55 М.
Tag her 🤭💞 #miniphone #smartphone #iphone #samsung #fyp
0:11
Tag her 🤭💞 #miniphone #smartphone #iphone #samsung #fyp
Pockify™
Рет қаралды 38 МЛН
Product Link in Bio ( # 1636 ) @MaviGadgets ✅ Smart Universal Magnetic Car Phone Holder
0:14
Product Link in Bio ( # 1636 ) @MaviGadgets ✅ Smart Universal Magnetic Car Phone Holder
MaviGadget
Рет қаралды 10 МЛН
Какой ноутбук взять для бабушки? #msi #rtx4090 #laptop #юмор #игровой #apple #shorts
0:14
Какой ноутбук взять для бабушки? #msi #rtx4090 #laptop #юмор #игровой #apple #shorts
Buy Smart┃Магазин ноутбуков
Рет қаралды 1,7 МЛН