Courses with lecturer

Term

Language

Place

Form

Price without VAT

Open term

Language

Place

online

Form

virtual classroom

Code of the course: KT21140308-0001

Price without VAT

24 000 Kč

Order

Open term

Language

Place

Praha

Form

classroom

Code of the course: KT21140308-0002

Price without VAT

24 000 Kč

Order

Open term

Language

Place

online

Form

virtual classroom

Code of the course: KT21140308-0003

Price without VAT

24 000 Kč

Order

Course description

If you want to address security within the Microsoft Azure environment, and especially if you implement and use services such as Azure Monitor (Application Insights, Log Analytics), use Data Lake, or detect and hunt a hacker using Azure Sentinel or Microsoft Defender for Endpoint, then without Kusto language You can't bypass Query Language. At the training, we will show you all the commands, the composition of the query and you will learn the techniques that are necessary for the construction of complex correlation rules. During the training, we will prepare these correlation rules and then adapt them to Azure Workbooks and Azure Dashboard or connect them to the Open source Grafana tool.

Required knowledge

Basic analytical knowledge, basic knowledge of database schema and possibly knowledge of object-oriented programming and data communication.

Target audience

The course is intended for analysts who set correlation rules within Microsoft security technologies, or may be a suitable basis for deep hunting in the Microsoft cloud environment.

Course content

Kusto Query Language Commands
Song query
Acquisition of techniques for the construction of correlation rules
Preparation and adaptation of correlation rules to Azure Workbooks and Azure Dashboard, etc.

Materials

Materials in electronic form.

Objectives

Introduction to Kusto Query Language, a tool for correlation and data analytics not only in the Azure Sentinel.

Lecturers

Cybersecurity Specialist

CEHv10, eWPTv1, CompTIA Pentest+, PECB ISO/IEC 27001 Lead Auditor, Microsoft MVP, MCSE | CISO

SCADA/ICS Penetration Testing
Mobile Device Forensics
Web Application & REST API Penetration Testing by OWASP
Offensive Security & Red Team Operations
Spy operations and intelligence work using OSINT, HUMINT, GEOINT, SOCINT etc.
Plan TTP's and APT Attack using by MITRE ATT&CK Framework
Cyb3r Days (https://www.cyb3r-days.com/) conference organizer & speaker
Cyber Rangers Podcast organizer & speaker

Do you want this tailor-made course for your company?

News with the course

Security 1. 8. 2024

How to Become a Cyber Security Expert

If you want to be a cybersecurity expert and become a security architect, we have great news for you. We have prepared a series of courses that will help you fully master the issue of strategic design of the safety and security of the organization.

Microsoft 10. 6. 2024

10 reasons to use Power BI for data analysis

Microsoft Power BI is a powerful platform for data analysis and visualization. You can easily connect all the company's data sources to it, no matter where they are or in any format. In a user-friendly environment, it creates interactive visualizations that bring data to life and facilitate the recognition of trends and insights.

Microsoft 17. 5. 2024

Overview of Microsoft Azure certifications

We took a closer look at Microsoft Azure certifications, also known as AZ. Microsoft's certification map is extensive and at first glance it may not be easy to understand it. That's why we're here to help you with that.

More news