https://github.com/scautomation/Azure-Sentinel-Syslog-Workbook

community version of azure sentinel workbook
https://github.com/scautomation/Azure-Sentinel-Syslog-Workbook

Last synced: 3 months ago
JSON representation

community version of azure sentinel workbook

• Host: GitHub
• URL: https://github.com/scautomation/Azure-Sentinel-Syslog-Workbook
• Owner: scautomation
• Created: 2020-05-21T14:48:03.000Z (about 4 years ago)
• Default Branch: master
• Last Pushed: 2020-05-21T14:55:34.000Z (about 4 years ago)
• Last Synced: 2024-01-18T07:17:54.385Z (5 months ago)
• Size: 301 KB
• Stars: 5
• Watchers: 2
• Forks: 1
• Open Issues: 0
• Metadata Files:
  • Readme: README.MD

Lists

• awesome-kql-sentinel - scautomation/Azure-Sentinel-Syslog-Workbook

README

        
# Azure Sentinel/Monitor Syslog Workbook

## Purpose

Community Syslog workbook mirroring Windows Event Log workbook

### Related blog post

https://www.systemcenterautomation.com/azure-sentinel-syslog-workbook

### Parameters

Workbook is entirely dynamic. Facility and Severity Level paramters rely on HostName parameter, and Severity Level relies on both.

### Images

![image](./images/2020-05-21_9-23-42.png)

![image](./images/2020-05-21_9-24-03.png)

![image](./images/2020-05-21_9-24-26.png)