cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Sentinel Log Sources or asset list Information

Sand_Sentinel87
Copper Contributor

‎Jul 04 2024 01:03 AM

‎Jul 04 2024 01:03 AM

Sentinel Log Sources or asset list Information

In Sentinel as like any other SIEM, how do we get the complete list of log sources which are integrated along with some required fields like Device Vendor, Device Product, Host name/Computer, IP address.

Is there any workbook or KQL which provides this information.

213 Views
0 Likes
1 Reply
Reply
1 Reply
Clive_Watson

‎Jul 04 2024 05:14 AM

‎Jul 04 2024 05:14 AM

Re: Sentinel Log Sources or asset list Information

@Sand_Sentinel87 

 

Many workbooks would cover this (or the main parts), maybe start with "Workspace usage" in the Content hub.  Both the "Workspace Info" and "CEF Tabs" (under [Cost Analysis]) display this data 

Clive_Watson_0-1720095186032.png

 

0 Likes
Reply