Hunt for threats using notebooks in Microsoft Sentinel

Module
7 Units

Intermediate

Security Operations Analyst

Azure

Microsoft Sentinel

Learn how to use notebooks in Microsoft Sentinel for advanced hunting.

Learning objectives

Upon completion of this module, the learner will be able to:

Explore API libraries for advanced threat hunting in Microsoft Sentinel
Describe notebooks in Microsoft Sentinel
Create and use notebooks in Microsoft Sentinel

Prerequisites

Basic knowledge of operational concepts such as monitoring, logging, and alerting
Basic experience with Azure services

Get started with Azure

Choose the Azure account that's right for you. Pay as you go or try Azure free for up to 30 days. Sign up.

Introduction min
Access Azure Sentinel data with external tools min
Hunt with notebooks min
Create a notebook min
Explore notebook code min
Module assessment min
Summary and resources min