Microsoft Sentinel content hub catalog

Solutions in Microsoft Sentinel provide a consolidated way to acquire Microsoft Sentinel content, like data connectors, workbooks, analytics, and automation, in your workspace with a single deployment step.

This article lists the domain-specific out-of-the-box (built-in) and on-demand solutions available for you to deploy in your workspace. For the full list of solutions in Microsoft Sentinel, see Azure Marketplace.

When you deploy a solution, the security content included with the solution, such as data connectors, playbooks, or workbooks, are available in the relevant views for the content. For more information, see Centrally discover and deploy Microsoft Sentinel out-of-the-box content and solutions.


The Microsoft Sentinel content hub experience is currently in PREVIEW, as are all individual solution packages. See the Supplemental Terms of Use for Microsoft Azure Previews for additional legal terms that apply to Azure features that are in beta, preview, or otherwise not yet released into general availability.

Domain solutions

Name Includes Categories Supported by
Apache Log4j Vulnerability Detection Analytics rules, hunting queries, workbooks, playbooks, watchlist Application, Security - Threat Protection, Security - Vulnerability Management Microsoft
Cybersecurity Maturity Model Certification (CMMC) Analytics rules, workbook, playbook Compliance Microsoft
Dev-0537 Detection and Hunting Security - Threat Protection Microsoft
Microsoft Defender for IoT Analytics rules, playbooks, workbook Internet of Things (IoT), Security - Threat Protection Microsoft
Maturity Model for Event Log Management M2131 Analytics rules, hunting queries, playbooks, workbook Compliance Microsoft
Microsoft Purview Insider Risk Management (IRM) Data connector, workbook, analytics rules, hunting queries, playbook Security - Insider threat Microsoft
Deception Honey Tokens Workbooks, analytics rules, playbooks Security - Threat Protection Microsoft
NIST SP 800-53 Workbooks, analytic rules, playbooks Security - Threat Protection Microsoft
Security Threat Essentials Analytic rules, Hunting queries Security - Others Microsoft
Zero Trust (TIC 3.0) Analytics rules, playbook, workbooks Compliance, Identity, Security - Others Microsoft

All Microsoft Sentinel solutions

For the full list of solutions in Microsoft Sentinel, see Azure Marketplace.

Next steps