Section 2: Data Connectors, Management, and Queries

In this section, you will learn how to collect data, manage data to prevent overspending, and query data for useful information as part of threat hunting and other security-related activities.

The following chapters are included in this section:

• Chapter 3, Data Collection and Management
• Chapter 4, Integrating Threat Intelligence
• Chapter 5, Using the Kusto Query Language (KQL)
• Chapter 6, Azure Sentinel Logs and Writing Queries