Tag Archives: azure sentinel alert

Parse ExtendedProperty in Azure Sentinel alert for Logic App use

I got a few questions from readers about processing data in ExtendedProperties in alert data. They didn’t want to send a full JSON format. Instead they wanted to extract piece of information from helpful field like ExtendedProperties to compose a … Continue reading

Posted in Security Automation | Tagged , | 7 Comments

Demystify alert generated by Azure Sentinel versus other 3rd products

There is a question in the community asking about alert field in Incident page, along with the question about what it meant. In this article, let’s talk about that and see how to distinguish between alert generated from Azure Sentinel … Continue reading

Posted in Security Operation | Tagged , , | 1 Comment