Learn KQL for Microsoft Sentinel Development Data Science free course
 |
| Learn KQL for Microsoft Sentinel Development Data Science free udemy course |
Data Science free udemy course
Welcome to Microsoft Sentinel KQL.
KQL is a simple query language used in several products such as
Azure Log Analytics
Microsoft Sentinel
Azure Resource Graph
to read and write structured and unstructured data.
Course Structure
In this course we will focus on using KQL in Microsoft Sentinel.
This will guide you to a basic understanding of KQL
Quick Reference.
Quick Result
Filter for Better Results
Strengthen Connections
Perspective Summary
Save and Reuse
Use Visual Case
Subtopic. easy to understand.
A quick start is done by searching for a specific phrase -> project required columns -> expand required additional columns.
For quick results we search for unique values -> use list -> follow above to show limited result.
Filter better result Use where condition -> Use TimeGeneated filter
Take advantage of joins by learning about different join types
Summarize perspective Summary -> make_list -> make_set
When you're done, save and reuse by saving as a query or function .
Use visuals to increase visibility.
Start creating the currently used instance instance.
End result
After successfully completing this course, you will be able to create your own KQL query from start to finish.
FREE for alimited time
Don’t miss any coupons by joining our Telegram channel https://t.me/learningonlinecourses
DISCLOSURE: This post may contain affiliate links, meaning when you click the links and make a purchase, we receive a commission.
Note : Coupons might expire anytime, so enroll as soon as possible to get the courses for FREE or Huge discount
