Generating an Incident Report based on data from a Sentinel incident using a custom Logic App that connects to Azure OpenAI (gpt-3.5-turbo and gpt-4).
Author Archives: Angelica Faber
Global watchlists?
Managing lists globally and locally, i.e., on a customer-by-customer basis, using watchlists and externaldata.
Sentinel Playbook and Azure OpenAI
Sentinel automation playbooks using a custom Logic App connector that uses the new Chat API with gpt-3.5-turbo and gpt-4. This time with Azure OpenAI vs OpenAI.
Sentinel and OpenAI Chat API with gpt-3.5-turbo and gpt-4
Sentinel automation playbooks using a custom Logic App connector that uses the new Chat API with gpt-3.5-turbo and gpt-4.
Sentinel POC – Architecture and Recommendations for MSSPs – Part 3
Common topics that come up when partners, specifically MSSPs, are testing Microsoft Sentinel features to evaluate its SIEM and SOAR capabilities. Part 3.
Sentinel POC – Architecture and Recommendations for MSSPs – Part 2
Common topics that come up when partners, specifically MSSPs, are testing Microsoft Sentinel features to evaluate its SIEM and SOAR capabilities. Part 2.
Sentinel POC – Architecture and Recommendations for MSSPs – Part 1
Common topics that come up when partners, specifically MSSPs, are testing Microsoft Sentinel features to evaluate its SIEM and SOAR capabilities. Part 1.
My adventures with Sentinel and the OpenAI Logic App Connector
Sentinel automation playbooks using the OpenAI Logic App connector.
MSSPs and Identity: Q&A
Follow-up to the previous blog post to answer common questions on MSSPs and Identity
MSSPs and Identity
Identity configuration recommendations for MSSPs.