Mitigate Threats Using Microsoft Sentinel

سرفصل های دوره

This course will teach you how to enable, configure, and monitor both cloud and non-cloud platforms using Microsoft Sentinel needed for the Microsoft Security Operations Analyst (SC-200).

Exercise Files

mitigate-threats-microsoft-sentinel-cert.zip

Module 1 - Overview

1. Course Overview

Module 2 - Design and Configure a Microsoft Sentinel Workspace

1. Introduction

2. Plan a Microsoft Sentinel Workspace

3. Configure Microsoft Sentinel Roles

4. Design Microsoft Sentinel Data Storage

5. Configure Microsoft Sentinel Service Security

6. Demo - Manage Microsoft Sentinel

7. Summary

Module 3 - Implement the Use of Data Connectors in Microsoft Sentinel

1. Introduction

2. Identify Data Sources to Be Ingested for Microsoft Sentinel

3. Configure and Use Microsoft Sentinel Data Connectors

4. Design Windows and Linux Collections

5. Configure Custom Threat Intelligence Connectors

6. Create Custom Logs in Azure Log Analytics to Store Custom Data

7. Demo - Identify Connectors, Agents, and Custom Logs

8. Summary

Module 4 - Manage Microsoft Sentinel Analytics Rules

1. Introduction

2. Design and Configure Analytics Rules

3. Configure Custom Scheduled Queries

4. Define Incident Creation Logic

5. Demo - Manage Alert Rules

6. Summary

Module 5 - Manage Microsoft Sentinel Incidents

1. Introduction

2. Investigate Incidents in Microsoft Sentinel

3. Identify Advanced Threats with User and Entity Behavior Analytics

4. Demo - Manage Microsoft Sentinel Incidents

5. Summary

Module 6 - Use Microsoft Sentinel Workbooks to Analyze and Interpret Data

1. Introduction

2. Configure Advanced Visualizations

3. View and Analyze Microsoft Sentinel Data Using Workbooks

4. Demo - Manage Microsoft Sentinel Workbooks

5. Summary

Module 7 - Hunt for Threats Using the Microsoft Sentinel Portal

1. Introduction

2. Perform Advanced Hunting with Notebooks

3. Create Custom Hunting Queries

4. Use Hunting Bookmarks for Data Investigations

5. Monitor Hunting Queries by Using Livestream

6. Demo - Explore Hunting Tools

7. Summary

Module 8 - Configure SOAR in Microsoft Sentinel

1. Introduction

2. Create Microsoft Sentinel Playbooks

3. Use Playbooks to Manage Incidents

4. Demo - Explore Microsoft Sentinel Playbooks

5. Summary

Module 9 - Domain Summary

1. Domain Summary

“Learning Deep Learning From Perceptron to Large Language Models” به سبد خرید شما اضافه شد. مشاهده سبد خرید

139,000 تومان

خرید اشتراک افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: PluralSight