sentinel-attack issues

Results 13 sentinel-attack issues

Sort by recently updated

Question about the whitelist queries

Hello! So I am deploying this to an instance of Sentinel I already have up and running. I added the parser, created the storage container, and uploaded the whitelists. I...

secAnalyst

Issue with how workbook queries the CSV storage files.

From any tab in the dashboard, I can see that it can reach the CSV files, but it returns no results. When I look at the prerequisite section it says:...

Networking-G

Dashboard error: 'project' operator: Failed to resolve table or column expression named 'process_create_whitelist'...

Maybe something has changed in Azure, but the guide in https://github.com/BlueTeamLabs/sentinel-attack/wiki/Sysmon-Threat-Hunting-workbook---post-deployment-configuration can no longer be followed. Azure does not allow me to use the exact workspace name as the underlying...

Networking-G

sentinel-attack
sentinel-attack copied to clipboard

Metadata

Question about the whitelist queries

Issue with how workbook queries the CSV storage files.

Dashboard error: 'project' operator: Failed to resolve table or column expression named 'process_create_whitelist'...

← Metadata

Owner

Metadata

sentinel-attack sentinel-attack copied to clipboard

Metadata

Question about the whitelist queries

Issue with how workbook queries the CSV storage files.

Dashboard error: 'project' operator: Failed to resolve table or column expression named 'process_create_whitelist'...

← Metadata

Owner

Metadata

sentinel-attack
sentinel-attack copied to clipboard