We believe conceptual knowledge is the most important part to start learning something new. The information mentioned in the documents may vary as per the updates released by different service providers, but we will keep on updating the information to provide the best documentation for conceptual understanding. For any queries please feel free to reach us at learnconceptswork@gmail.com Please subscribe if you have learnt something new and we will keep on uploading new videos.
Hi, I need your support. I am facing one issue that logs coming from network devices as CEF and syslog are directly coming on the OS drive, whereas I want that they should come on a additional data drive. Second question can we separate this ingestion of CEF and sylog in log forwarder VM only ? Please support
A question plz: if I understand well sentinel is both for siem and soar. Do you think that customer may use sentinel for siem and another tool for soar?? For which reason they do that and which kind of tools they may use for soar for example ? Thanks
Terrific Video... I love how you present complex Microsoft technology and very easy sequencial steps.. thanks you very much for create all that material for the community. 😁😁😁😁😁
Your videos are very helpful to understand easily. Could you pls make a video on how to integrate monitoring with service now to create tickets and also how azure services can integrate with splunk or checkmk to monitor the azure infra
Is there any way to filter the logs by using dcr pipeline before it sends to sentinel. as per the refferance we need to validate the logs and then to remove it which means logs will be ingested to workspace and in production deployment the size of the logs will be enourmous. How ever if the logs from 2 differnt types of firewall is coming under one table and using one dcr then at that time we would need to specify the device vendor as well to get it filterout right.
Thank you for giving good concepts. Waiting for other types of Analytics rules in Sentinel like Fusion, Anamoly.... Also waiting for playbooks, workbooks...
I really haven't seen anyone explain such a monotonous subject as clean, concise, beautiful and humorous as you, my friend. I really congratulate you. you made a great narration.
Fantastic and well-presented series about Log analytics and associated subjects. I think Microsoft should hire you to teach people with their product. The best videos ever, without complicating the subject matter. a million Kudos !!!!!!!!!!!!!!!
Hi Thanks for creating such a fabulous content - your videos and really helpful. They're crystal clear and easy to understand. Quick question: Towards the end of this video, you mention that next video will be "Configuring Advanced Settings for MDATP on Linux". However, I'm unable to locate that on your channel. Any chance you can share the link of that video here? Thanks
Hi sir I Request you kindly cover these Below Topics in Microsoft Sentinel course Hunting TTPs of APT Groups & mapping them with MITRE ATT&CK Framework creating Heat Maps for the reference to MITRE ATT&CK Framework for the Detection coverage Hunting Live APT Actors & Identify the potential IOCs How to Mitigate security Breaches to proactively Hunting the Threat Actors specially Ransomware How to Create Standard Operation Procedure(SOP) Documents as per Security Incident Thanks in Advance & Have a Nice day.
Hi sir I Request you kindly cover these Below Topics in Microsoft Sentinel course Hunting TTPs of APT Groups & mapping them with MITRE ATT&CK Framework creating Heat Maps for the reference to MITRE ATT&CK Framework for the Detection coverage Hunting Live APT Actors & Identify the potential IOCs How to Mitigate security Breaches to proactively Hunting the Threat Actors specially Ransomware How to Create Standard Operation Procedure(SOP) Documents as per Security Incident Thanks in Advance & Have a Nice Day.
Hi sir Appreciate your knowledge & Command on Microsoft Sentinel, Hard work Making these videos I dont know why your channel Not Got Highlighted In RU-vid for your Videos(I belive you have made some videos Private/memebers Only) Thats the Reason your Videos Are Not Reaching Many people around Global, So i Request you to make change by removing private options, so that Many students get know about your channel & your wonderful content, even views automatically get generated & many more students subscribe your channel, That was my opinion as your student Thanks in advance & Have a great year ahead
i have a question - these logs that are retained up to 7 years , are they retained directly into Log analytics workspace or somewhere else ? Very good video!
Hey @ 11:00 what is the difference between storing and processing in this context ? what does it means data processed in only two location ? does this means, part of the data, let's say the response of KQL queries or graphs will be in US or Europe even if the data was stored else where ?
The way he explains each and every technical aspect of technology is really exceptional. I really appreciate your time and efforts you put to educate all of us. Thank you once again.