#kusto — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #kusto, aggregated by home.social.
-
*Read it like an infomercial*
Are you tired of working with logs that contain arrays with multiple JSON like this?
Have you tried creating a new column with the value you want only to find out that this value has no fixed position in the array?
Now your problems are over! With this 5 line KQL snippet, written by a real human, you can finally have the peace of mind that all the fields are populated correctly and everything is neat inside a single JSON!
#kusto #kustoquery #kql #threathunting #threat_hunting #dfir #digitalforensics
-
Blog alert!
This time, a way to handle arrays that only have one element in KQL. A follow-up to the previous blog on XML and JSON.
#MicrosoftFabric
#ADX
#Kusto
#KQL
#JSON
#XML
#DataEngineerhttp://sqlreitse.com/2026/03/17/microsoft-realtime-intelligence-the-array-that-wasnt/
-
Blog alert!
A short one this time, on a nice find processen XML data in Realtime Intelligence.
#MicrosoftFabric
#RealtimeIntelligence
#XML
#Kusto
#KQL
#EventHousehttp://sqlreitse.com/2026/03/14/microsoft-fabric-realtime-intelligence-processing-xml-or-are-you/
-
Let AI Catch the Bugs: Uncoder AI Validates Detection Rule Syntax and Logic – Source: socprime.com https://ciso2ciso.com/let-ai-catch-the-bugs-uncoder-ai-validates-detection-rule-syntax-and-logic-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #SOCPrimePlatform #socprimecom #socprime #Splunk #Kusto #Blog #SPL
-
From IOCs to Queries: How Uncoder AI Automates Threat Intelligence Action – Source: socprime.com https://ciso2ciso.com/from-iocs-to-queries-how-uncoder-ai-automates-threat-intelligence-action-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #MicrosoftSentinel #SOCPrimePlatform #socprimecom #socprime #Elastic #Splunk #Kusto #Blog #STIX #IOC
-
From IOCs to Queries: How Uncoder AI Automates Threat Intelligence Action – Source: socprime.com https://ciso2ciso.com/from-iocs-to-queries-how-uncoder-ai-automates-threat-intelligence-action-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #MicrosoftSentinel #SOCPrimePlatform #socprimecom #socprime #Elastic #Splunk #Kusto #Blog #STIX #IOC
-
From IOCs to Queries: How Uncoder AI Automates Threat Intelligence Action – Source: socprime.com https://ciso2ciso.com/from-iocs-to-queries-how-uncoder-ai-automates-threat-intelligence-action-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #MicrosoftSentinel #SOCPrimePlatform #socprimecom #socprime #Elastic #Splunk #Kusto #Blog #STIX #IOC
-
From IOCs to Queries: How Uncoder AI Automates Threat Intelligence Action – Source: socprime.com https://ciso2ciso.com/from-iocs-to-queries-how-uncoder-ai-automates-threat-intelligence-action-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #MicrosoftSentinel #SOCPrimePlatform #socprimecom #socprime #Elastic #Splunk #Kusto #Blog #STIX #IOC
-
From Threat Report to Detection Logic: Uncoder AI Automates Rule Generation – Source: socprime.com https://ciso2ciso.com/from-threat-report-to-detection-logic-uncoder-ai-automates-rule-generation-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #MicrosoftSentinel #SOCPrimePlatform #socprimecom #socprime #Kusto #Blog
-
How Full Summary in Uncoder AI Supercharges Kusto Query Analysis for Threat Hunters – Source: socprime.com https://ciso2ciso.com/how-full-summary-in-uncoder-ai-supercharges-kusto-query-analysis-for-threat-hunters-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #MicrosoftSentinel #SOCPrimePlatform #SysmonEventID7 #FullSummary #socprimecom #clfs.sys #socprime #Kusto #Blog
-
🐣 HAPPY EASTER CAPSTONE! 🛡️
My KQL courses now include a complete attack scenario to test your skills — end to end.
🎯 Hands-on labs
📉 20% OFF for a limited time!
Crack it open 👇#KQL #Kusto #ThreatHunting #DetectionEngineering #DFIR
https://academy.bluraven.io -
🎁 NEW UPDATE:
I've added a small challenge to my FREE "Hands-On Introduction to KQL for Security Analysis" course.
More will be coming soon!
#KQL #Kusto #MicrosoftDefender #MicrosoftSentinel
👇
https://academy.bluraven.io/course/introduction-to-kql-for-security-analysis -
🚨 FREE unlimited lab access to "Introduction to KQL for Security Analysis" course!
Thrilled to announce that my Intro to KQL for Security Analysis lab environment is now completely free with no time restrictions!
https://academy.bluraven.io/course/introduction-to-kql-for-security-analysis
-
KQL
Kusto Query Language (KQL) is a powerful query language that is used to query Azure Data Explorer (ADX) and Azure Monitor log data. KQL is used to query data in tables, summarize d(...)
-
🔍 Advanced Time Series Anomaly Detection: Discover methods you’ve never seen before.
🔗 Attack Path & Execution Chain Detection with Process Mining: A novel approach to threat detection.
🌐 Attack Pattern Detection Using Graph Semantics: Start thinking in graphs and revolutionize your detection and investigation skills.https://academy.bluraven.io/advanced-hands-on-kql-for-threat-hunting-and-detection-engineering
#KQL #Kusto #SIEM #MicrosoftSentinel #MicrosoftDefender #MicrosoftDefenderXDR #Defender #cybersecurity #KQLForSecurityAnalysts #ThreatHunting #DetectionEngineering #training #dfir #incidentresponse
-
🚀 FREE Hands-On KQL for Security Analysis Course is now available! 🚀
✅ 50 seats bi-monthly
✅ Certificate of completion
✅ 14-day lab with real-world Microsoft Sentinel and Defender XDR logs 🔥🔥
Enroll for #FREE 👇
https://academy.bluraven.io/intro-to-kql-for-security-analysis
#KQL #Kusto #SIEM #MicrosoftSentinel #MicrosoftDefender #Defender #cybersecurity #KQLForSecurityAnalysts #training -
🚀 I just started offering Subscription plan for "Hands-On Kusto Query Language (KQL) for Security Analysts" course!
👉 https://academy.bluraven.io/hands-on-kusto-query-language-kql-for-security-analysts#KQL #Kusto #SIEM #MicrosoftSentinel #cybersecurity #training
-
Adversary-in-The-Middle & Business Email Compromisedthreat hunting with KQL
Find out essential points for threat hunting, focusing on how to track "potential" AiTM/BEC activities using Kusto Query Language (KQL) in Microsoft 365 Defender
#bec #AiTM #hunting #m365defender #microsoft365defender #threathunting #microsoft #azure #soc #phishing #kql #kusto #cloudsecurity
-
New post: "Cross-Platform Compatibility Made Easy with Multi-Platform Docker Images: Azure Data Explorer Sink Connector & Kafka Connect"
Docker has revolutionized the way we package and deploy software applications.
However, it's challenging to maintain a single image that can work across multiple platforms.
This blog post explores the steps required to build and deploy multi-platform Docker images.
-
New post: "Interesting Stuff - Week 11, 2023".
This week:
* Learn all about @azuredataexplorer and #Kusto, thanks to Akshay Dixit.
* I finally finished the second post in the Leaderboard, Kafka, and ADX series
* ChatGPT and dialogue prompting. Very interesting
* An old colleague of mine -Ted Neward - ponders the impact of AI on developers.
* Where has all the Big Data gone?Read all about it:
https://nielsberglund.com/post/2023-03-19-interesting-stuff---week-11-2023/
#AzureDataExplorer #KQL #kafka #kafkaconnect #AI #ml #openai