This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
This connector uses the Dynatrace Attacks REST API to ingest detected attacks into Microsoft Sentinel Log Analytics
This is autogenerated content. For changes, contact the solution provider.
| Connector attribute | Description |
|---|---|
| Log Analytics table(s) | {{graphQueriesTableName}} |
| Data collection rules support | Not currently supported |
| Supported by | Dynatrace |
All Attack Events
DynatraceAttacks
| summarize arg_max(TimeStamp, *) by AttackId
| take 10
All Exploited Attack Events
DynatraceAttacks
| where State == "EXPLOITED"
| summarize arg_max(TimeStamp, *) by AttackId
| take 10
Count Attacks by Type
DynatraceAttacks
| summarize arg_max(TimeStamp, *) by AttackId
| summarize count() by AttackType
| take 10
To integrate with Dynatrace Attacks make sure you have:
Dynatrace Attack Events to Microsoft Sentinel
Configure and Enable Dynatrace Application Security. Follow these instructions to generate an access token.
For more information, go to the related solution in the Azure Marketplace.
Training
Learning path
SC-200: Connect logs to Microsoft Sentinel - Training
SC-200: Connect logs to Microsoft Sentinel
Certification
Microsoft Certified: Security Operations Analyst Associate - Certifications
Investigate, search for, and mitigate threats using Microsoft Sentinel, Microsoft Defender for Cloud, and Microsoft 365 Defender.
Documentation
Dynatrace Runtime Vulnerabilities connector for Microsoft Sentinel
Learn how to install the connector Dynatrace Runtime Vulnerabilities to connect your data source to Microsoft Sentinel.
Dynatrace Audit Logs connector for Microsoft Sentinel
Learn how to install the connector Dynatrace Audit Logs to connect your data source to Microsoft Sentinel.
Dynatrace Problems connector for Microsoft Sentinel
Learn how to install the connector Dynatrace Problems to connect your data source to Microsoft Sentinel.