top of page

Learn how to write your first KQL query!

KQL is quite important in Azure SECOPS domain. Azure Sentinel, Azure Monitor, Defender suite, etc. are powered by KQL .

Sometime when people are new to KQL and they get task on writing query. It could be confusing for someone and hard to understand from where to start.

My vlog talk about approach and basic commands. In this video I have tried explaining about the approach that one can use while writing their first KQL query. I have talked about the few basic operator that are useful while working on the tasks. Do comment if you have any questions.

160 views0 comments

Recent Posts

See All

Optimizing Microsoft Sentinel (SIEM) Environment

In the ever-evolving landscape of cybersecurity, the importance of a well-optimized Sentinel Environment cannot be overstated. As threats continue to morph and adapt, security teams must engage in a c


bottom of page