Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/rod-trent/AddictedtoKQL
This is an advanced KQL blog series and book
https://github.com/rod-trent/AddictedtoKQL
Last synced: about 1 month ago
JSON representation
This is an advanced KQL blog series and book
- Host: GitHub
- URL: https://github.com/rod-trent/AddictedtoKQL
- Owner: rod-trent
- Created: 2022-01-28T19:04:12.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2024-05-15T18:42:33.000Z (about 2 months ago)
- Last Synced: 2024-05-16T06:39:13.642Z (about 1 month ago)
- Size: 7.72 MB
- Stars: 95
- Watchers: 14
- Forks: 9
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
Lists
- awesome-kql-sentinel - Addicted to KQL
README
# Addicted to KQL - the blog series, the book, the video channel, the merch store
This repository contains the code, queries, and eBook included as part of the Addicted to KQL series. The series is a continuing effort to discuss and educate about the power and simplicity of the Kusto Query Language.
WARNING: This is an advanced KQL series. For beginning topics don't start here. Instead, see the original Must Learn KQL series. Come back when you're done. We'll be waiting for you.
The series has it's own shortlink. To return back here, just remember the easy URL: https://aka.ms/Addicted2KQL
Table of Contents
The following are links to the entire series so far:
(links go live when each part/chapter is released)
* Addicted to KQL Part 0: The Wit and Wisdom of Standard Columns in Azure Monitor Logs Posted March 16, 2022
* Addicted to KQL Part 1: Parsing Unruly Data
** Addicted to KQL Part 1.a: Access sub-columns using the bag_unpack plugin - Posted April 18, 2022 by Gary Bushey
* Addicted to KQL Part 2: Repeatable Repercussion - Building Functions
* Addicted to KQL Part 3: Deep dive into Join
* Addicted to KQL Part 4: REGEX
* Addicted to KQL Part 5: Using External Data Sources
* Addicted to KQL Part 6: Time Series - Azure KQL – Time After Time - Posted May 16, 2022 by Gary Bushey
* Addicted to KQL Part 7: Working with IP Addresses - Azure KQL – Working with IP Addresses - Posted May 21, 2022 by Gary Bushey
* Addicted to KQL Part 8: Optimizing Queries and Best Practices
* Addicted to KQL Part 9: Using KQL for Hunting Operations
NOTE: The series is currently being developed. The TOC may change dramatically prior to launch.
