Azure-Sentinel icon indicating copy to clipboard operation
Azure-Sentinel copied to clipboard

Published 20 hours ago verified publisher icon Azure

update to SOCProcessFramework solution

Open BenjiSec opened this issue 1 year ago • 4 comments

Required items, please complete

Change(s):

  • Updated Get-SOCActions playbook and SocRA watchlist to support Microsoft Sentinel incident tasks
  • Update to ReadMe file
  • Incident trigger for Get-SentinelAlertsEvidence playbook
  • Update to ReadMe file

Reason for Change(s):

  • Support new features in Sentinel

BenjiSec avatar Apr 21 '23 15:04 BenjiSec

Hello @BenjiSec looking into this

v-prasadboke avatar Apr 25 '23 11:04 v-prasadboke

Hello @rahul0216 and @manishkumar1991 can you please review the playbook and approve

v-prasadboke avatar Apr 27 '23 10:04 v-prasadboke

Hello @BenjiSec manishkumar has requested some changes

v-prasadboke avatar May 03 '23 04:05 v-prasadboke

Hello @BenjiSec manishkumar has requested some changes

done

BenjiSec avatar May 03 '23 11:05 BenjiSec

Hello @manishkumar1991 waiting for your feedback

v-prasadboke avatar May 05 '23 04:05 v-prasadboke 

Thank you @manishkumar1991,
Continuing to review this pr

v-prasadboke avatar May 09 '23 11:05 v-prasadboke

Hello @BenjiSec still working on this

v-prasadboke avatar May 18 '23 16:05 v-prasadboke