Sentinel
by Assil Abdulrahim
1. Definition
1.1. SIEM
1.2. SOAR
2. Ingest
2.1. Workspace
2.2. Data Sources
3. Detect
4. Investigate
4.1. Analytic Rules
4.1.1. Scheduled
4.1.1.1. Events
4.1.1.2. Alerts
4.1.2. MS Security
4.1.3. ML Behavior Analytics
4.1.4. Fusion