Cyborg Security HUNTER Hunt Packages connector for Microsoft Sentinel
Cyborg Security is a leading provider of advanced threat hunting solutions, with a mission to empower organizations with cutting-edge technology and collaborative tools to proactively detect and respond to cyber threats. Cyborg Security's flagship offering, the HUNTER Platform, combines powerful analytics, curated threat hunting content, and comprehensive hunt management capabilities to create a dynamic ecosystem for effective threat hunting operations.
Follow the steps to gain access to Cyborg Security's Community and setup the 'Open in Tool' capabilities in the HUNTER Platform.
This is autogenerated content. For changes, contact the solution provider.
Connector attributes
| Connector attribute | Description |
|---|---|
| Log Analytics table(s) | SecurityEvents |
| Data collection rules support | Workspace transform DCR |
| Supported by | Cyborg Security |
Query samples
All Alerts
SecurityEvent
Vendor installation instructions
ResourceGroupName & WorkspaceName
{0}
WorkspaceID
{0}
Sign up for Cyborg Security's HUNTER Community Account
Cyborg Security offers Community Member access to a subset of the Emerging Threat Collections and hunt packages.
Create a Free Community Account to get access to Cyborg Security's Hunt Packages: Sign Up Now!
Configure the Open in Tool Feature
Navigate to the Environment section of the HUNTER Platform.
Fill in the Root URI of your environment in the section labeled Microsoft Sentinel. Replace the
<bolded items>with the IDs and Names of your Subscription, Resource Groups and Workspaces.https[]()://portal.azure.com#@**AzureTenantID**/blade/Microsoft_OperationsManagementSuite_Workspace/Logs.ReactView/resourceId/%2Fsubscriptions%2F**AzureSubscriptionID**%2Fresourcegroups%2F**ResourceGroupName**%2Fproviders%2Fmicrosoft.operationalinsights%2Fworkspaces%2F<**WorkspaceName**>/Click Save.
Execute a HUNTER hunt package in Microsoft Sentinel
Identify a Cyborg Security HUNTER hunt package to deploy and use the Open In Tool button to quickly open Microsoft Sentinel and stage the hunting content.
Next steps
For more information, go to the related solution in the Azure Marketplace.