I usually watch the videos on your channel in the morning and the coffee sections are so good that they make me make myself a coffee before continuing to watch the videos. With this, I feel that we are having coffee together and discussing the subject of the video.
Hi, I'm always trying to replicate in a lab all your videos, so that I can truly learn and understand, Thanks a lot for all your videos. Can you provide more details on the App Registration and on the "Parse JSON" action? I'm stuck in those two...
Thanks for covering data enrichment for Sentinel, really beginning to make use of it. Do you have plans to cover the use of MIcrosoft's Sentinel Triage Assistant (MSTAT)? There is, I understand the connectors and modules which help with the initial triage looking at the history of the entities in the incident and risk scoring these, ultimately adjusting the severity of the incident based on this risk score.
For STAT, most don’t understand it, but fairly easy to set up in a lab or in a commercial environment. Huge advantage for a SOC team as it is basically an additional analyst.
