The Definitive Guide to KQL: Using Kusto Query Language for operations, defending, and threat hunting - Couverture souple
Livre 20 sur 22: Business Skills
Synopsis
Turn the avalanche of raw data from Azure Data Explorer, Azure Monitor, Microsoft Sentinel, and other Microsoft data platforms into actionable intelligence with KQL (Kusto Query Language). Experts in information security and analysis guide you through what it takes to automate your approach to risk assessment and remediation, speeding up detection time while reducing manual work using KQL. This accessible and practical guide―designed for a broad range of people with varying experience in KQL―will quickly make KQL second nature for information security.
Solve real problems with Kusto Query Language― and build your competitive advantage:
- Learn the fundamentals of KQL―what it is and where it is used
- Examine the anatomy of a KQL query
- Understand why data summation and aggregation is important
- See examples of data summation, including count, countif, and dcount
- Learn the benefits of moving from raw data ingestion to a more automated approach for security operations
- Unlock how to write efficient and effective queries
- Work with advanced KQL operators, advanced data strings, and multivalued strings
- Explore KQL for day-to-day admin tasks, performance, and troubleshooting
- Use KQL across Azure, including app services and function apps
- Delve into defending and threat hunting using KQL
- Recognize indicators of compromise and anomaly detection
- Learn to access and contribute to hunting queries via GitHub and workbooks via Microsoft Entra ID
Les informations fournies dans la section « Synopsis » peuvent faire référence à une autre édition de ce titre.
À propos de l?auteur
Mark Morowczynski is a principal product manager on the Security Customer Experience Engineering (CxE) team at Microsoft. He spends most of his time working with customers on their deployments in the Identity and Access Management (IAM) and information security space. He's spoken at various industry events, including Black Hat, Defcon Blue Team Village, Blue Team Con, Microsoft Ignite, and several BSides and SANS Security Summits. He has a BS in computer science, an MS in computer information and network security, and an MBA from DePaul University. He also has a MS in Information Security Engineering from the SANS Technology Institute. He can be found online on Mastodon at @markmorow@infosec.exchange or his website at https://markmorow.com.
Rod Trent is a senior program manager at Microsoft, focused on cybersecurity and AI. He has spoken at many conferences over the past 30-some years and has written several books, including Must Learn KQL: Essential Learning for the Cloud-focused Data Scientist, and thousands of articles. He is a husband, dad, and first-time grandfather. In his spare time (if such a thing does truly exist), you can regularly find him simultaneously watching Six Million Dollar Man episodes and writing KQL queries. Rod can be found on LinkedIn and X (formerly Twitter) at @rodtrent.
Matthew Zorich was born and raised in Australia and works for the Microsoft GHOST team, which provides threat-hunting oversight to many areas of Microsoft. Before that, he worked for the Microsoft Detection and Response Team (DART) and dealt with some of the most complex and largest-scale cybersecurity compromises on the planet. Before joining Microsoft as a full-time employee, he was a Microsoft MVP, ran a blog focused on Microsoft Sentinel, and contributed hundreds of open-source KQL queries to the community. He is a die-hard sports fan, especially the NBA and cricket.
Les informations fournies dans la section « A propos du livre » peuvent faire référence à une autre édition de ce titre.
Résultats de recherche pour The Definitive Guide to KQL: Using Kusto Query Language...
Image d'archives
The Definitive Guide to KQL: Using Kusto Query Language for operations, defending, and threat hunting (Business Skills)
Edité par
Microsoft Press, 2024
ISBN 10 : 0138293384
ISBN 13 : 9780138293383
Ancien ou d'occasion
paperback
Vendeur : Evergreen Goodwill, Seattle, WA, Etats-Unis
Évaluation du vendeur 5 sur 5 étoiles
paperback. Etat : Good. N° de réf. du vendeur mon0000324937
Acheter D'occasion
EUR 36,48
EUR 3,39 shipping
Expédition nationale : Etats-Unis
Expédition nationale : Etats-Unis
Quantité disponible : 1 disponible(s)
Image fournie par le vendeur
Definitive Guide to KQL : Using Kusto Query Language for Operations, Defending, and Threat Hunting
Edité par
Microsoft Press, 2024
ISBN 10 : 0138293384
ISBN 13 : 9780138293383
Ancien ou d'occasion
Couverture souple
Vendeur : GreatBookPrices, Columbia, MD, Etats-Unis
Évaluation du vendeur 5 sur 5 étoiles
Etat : As New. Unread book in perfect condition. N° de réf. du vendeur 46860710
Acheter D'occasion
EUR 42,97
EUR 2,24 shipping
Expédition nationale : Etats-Unis
Expédition nationale : Etats-Unis
Quantité disponible : 5 disponible(s)
Image fournie par le vendeur
Definitive Guide to KQL : Using Kusto Query Language for Operations, Defending, and Threat Hunting
Vendeur : GreatBookPrices, Columbia, MD, Etats-Unis
Évaluation du vendeur 5 sur 5 étoiles
Etat : New. N° de réf. du vendeur 46860710-n
Acheter neuf
EUR 43,67
EUR 2,24 shipping
Expédition nationale : Etats-Unis
Expédition nationale : Etats-Unis
Quantité disponible : 5 disponible(s)
Image d'archives
The Definitive Guide to KQL (Paperback)
Edité par
Pearson Education (US), Boston, 2024
ISBN 10 : 0138293384
ISBN 13 : 9780138293383
Neuf
Paperback
Vendeur : Grand Eagle Retail, Bensenville, IL, Etats-Unis
Évaluation du vendeur 5 sur 5 étoiles
Paperback. Etat : new. Paperback. Turn the avalanche of raw data from Azure Data Explorer, Azure Monitor, Microsoft Sentinel, and other Microsoft data platforms into actionable intelligence with KQL (Kusto Query Language). Experts in information security and analysis guide you through what it takes to automate your approach to risk assessment and remediation, speeding up detection time while reducing manual work using KQL. This accessible and practical guide, designed for a broad range of people with varying experience in KQL will quickly make KQL second nature for information security. Solve real problems with Kusto Query Language and build your competitive advantage: Learn the fundamentals of KQL - what it is and where it is usedExamine the anatomy of a KQL queryUnderstand why data summation and aggregation is importantSee examples of data summation, including count, countif, and dcountLearn the benefits of moving from raw data ingestion to a more automated approach for security operationsUnlock how to write efficient and effective queriesWork with advanced KQL operators, advanced data strings, and multivalued stringsExplore KQL for day-to-day admin tasks, performance, and troubleshootingUse KQL across Azure, including app services and function appsDelve into defending and threat hunting using KQLRecognise indicators of compromise and anomaly detectionLearn to access and contribute to hunting queries via GitHub and workbooks via Microsoft Entra ID Shipping may be from multiple locations in the US or from the UK, depending on stock availability. N° de réf. du vendeur 9780138293383
Acheter neuf
EUR 45,99
Livraison gratuite
Expédition nationale : Etats-Unis
Expédition nationale : Etats-Unis
Quantité disponible : 1 disponible(s)
Image d'archives
The Definitive Guide to KQL
Vendeur : PBShop.store US, Wood Dale, IL, Etats-Unis
Évaluation du vendeur 5 sur 5 étoiles
PAP. Etat : New. New Book. Shipped from UK. Established seller since 2000. N° de réf. du vendeur DB-9780138293383
Acheter neuf
EUR 46,46
Livraison gratuite
Expédition nationale : Etats-Unis
Expédition nationale : Etats-Unis
Quantité disponible : 11 disponible(s)
Image d'archives
The Definitive Guide to KQL
Vendeur : PBShop.store UK, Fairford, GLOS, Royaume-Uni
Évaluation du vendeur 5 sur 5 étoiles
PAP. Etat : New. New Book. Shipped from UK. Established seller since 2000. N° de réf. du vendeur GB-9780138293383
Acheter neuf
EUR 40,10
EUR 6,73 shipping
Expédition depuis Royaume-Uni vers Etats-Unis
Expédition depuis Royaume-Uni vers Etats-Unis
Quantité disponible : 5 disponible(s)
Image d'archives
The Definitive Guide to KQL: Using Kusto Query Language for operations, defending, and threat hunting
Vendeur : Majestic Books, Hounslow, Royaume-Uni
Évaluation du vendeur 4 sur 5 étoiles
Etat : New. N° de réf. du vendeur 397865435
Acheter neuf
EUR 42,83
EUR 7,45 shipping
Expédition depuis Royaume-Uni vers Etats-Unis
Expédition depuis Royaume-Uni vers Etats-Unis
Quantité disponible : 1 disponible(s)
Image fournie par le vendeur
The Definitive Guide to KQL
Edité par
Pearson Education (US), US, 2024
ISBN 10 : 0138293384
ISBN 13 : 9780138293383
Neuf
Paperback
Vendeur : Rarewaves USA, OSWEGO, IL, Etats-Unis
Évaluation du vendeur 5 sur 5 étoiles
Paperback. Etat : New. Turn the avalanche of raw data from Azure Data Explorer, Azure Monitor, Microsoft Sentinel, and other Microsoft data platforms into actionable intelligence with KQL (Kusto Query Language). Experts in information security and analysis guide you through what it takes to automate your approach to risk assessment and remediation, speeding up detection time while reducing manual work using KQL. This accessible and practical guide-designed for a broad range of people with varying experience in KQL-will quickly make KQL second nature for information security. Solve real problems with Kusto Query Language- and build your competitive advantage: Learn the fundamentals of KQL-what it is and where it is usedExamine the anatomy of a KQL queryUnderstand why data summation and aggregation is importantSee examples of data summation, including count, countif, and dcountLearn the benefits of moving from raw data ingestion to a more automated approach for security operationsUnlock how to write efficient and effective queriesWork with advanced KQL operators, advanced data strings, and multivalued stringsExplore KQL for day-to-day admin tasks, performance, and troubleshootingUse KQL across Azure, including app services and function appsDelve into defending and threat hunting using KQLRecognize indicators of compromise and anomaly detectionLearn to access and contribute to hunting queries via GitHub and workbooks via Microsoft Entra ID. N° de réf. du vendeur LU-9780138293383
Acheter neuf
EUR 55,16
Livraison gratuite
Expédition nationale : Etats-Unis
Expédition nationale : Etats-Unis
Quantité disponible : 3 disponible(s)
Image fournie par le vendeur
The Definitive Guide to KQL
Edité par
Pearson Education (US), US, 2024
ISBN 10 : 0138293384
ISBN 13 : 9780138293383
Neuf
Paperback
Vendeur : Rarewaves.com USA, London, LONDO, Royaume-Uni
Évaluation du vendeur 5 sur 5 étoiles
Paperback. Etat : New. Turn the avalanche of raw data from Azure Data Explorer, Azure Monitor, Microsoft Sentinel, and other Microsoft data platforms into actionable intelligence with KQL (Kusto Query Language). Experts in information security and analysis guide you through what it takes to automate your approach to risk assessment and remediation, speeding up detection time while reducing manual work using KQL. This accessible and practical guide-designed for a broad range of people with varying experience in KQL-will quickly make KQL second nature for information security. Solve real problems with Kusto Query Language- and build your competitive advantage: Learn the fundamentals of KQL-what it is and where it is usedExamine the anatomy of a KQL queryUnderstand why data summation and aggregation is importantSee examples of data summation, including count, countif, and dcountLearn the benefits of moving from raw data ingestion to a more automated approach for security operationsUnlock how to write efficient and effective queriesWork with advanced KQL operators, advanced data strings, and multivalued stringsExplore KQL for day-to-day admin tasks, performance, and troubleshootingUse KQL across Azure, including app services and function appsDelve into defending and threat hunting using KQLRecognize indicators of compromise and anomaly detectionLearn to access and contribute to hunting queries via GitHub and workbooks via Microsoft Entra ID. N° de réf. du vendeur LU-9780138293383
Acheter neuf
EUR 56,15
Livraison gratuite
Expédition depuis Royaume-Uni vers Etats-Unis
Expédition depuis Royaume-Uni vers Etats-Unis
Quantité disponible : 3 disponible(s)
Image d'archives
The Definitive Guide to KQL: Using Kusto Query Language for operations, defending, and threat hunting (Business Skills)
Vendeur : Ria Christie Collections, Uxbridge, Royaume-Uni
Évaluation du vendeur 5 sur 5 étoiles
Etat : New. In. N° de réf. du vendeur ria9780138293383_new
Acheter neuf
EUR 43,45
EUR 13,73 shipping
Expédition depuis Royaume-Uni vers Etats-Unis
Expédition depuis Royaume-Uni vers Etats-Unis
Quantité disponible : 5 disponible(s)