Author: admin

Azure ARC – Quick view

Azure ARC – Quick view

In Sentinel, if you want to collect onPrem logs like Windows Events, CEF or Syslog, you have to deploy a combination of Azure Arc and AMA Agent. In this short article we will tackle the most important points The Azure ARC agent is about connecting onPrem (or other cloud) machines to Azure and governing them …

+ Read More

OnlySentinel

OnlySentinel

This blog was born with the idea of improving my understanding of Sentinel and helping others to get the best out of this amazing tool.