We have updated our Terms of Service, Code of Conduct, and Addendum.

Which Azure Sentinel tables does Cribl Stream natively support?

Options

Erin Sweeney

Erin Sweeney Posts: 45 admin

May 2023 in Stream

Which Azure Sentinel tables does Cribl Stream natively support? And does it also support sending data to custom tables?

Tagged:

Stream
Azure

0

Best Answer

Shane Daniels Posts: 28 mod

May 2023 edited May 2023 Answer ✓
Options
Cribl Stream supports sending to the following native tables in Azure Sentinel using configured Data Collection Rules:
CommonSecurityLog
SecurityEvents
Syslog
WindowsEvents
Cribl Documentation:
https://docs.cribl.io/stream/usecase-azure-webhook/
You can send data to Azure Sentinel custom tables via the Azure Monitor Logs destination. See documentation link below.
https://docs.cribl.io/stream/destinations-azure-monitor-logs/

1

Answers

Shane Daniels Posts: 28 mod

May 2023 edited May 2023 Answer ✓
Options
Cribl Stream supports sending to the following native tables in Azure Sentinel using configured Data Collection Rules:
CommonSecurityLog
SecurityEvents
Syslog
WindowsEvents
Cribl Documentation:
https://docs.cribl.io/stream/usecase-azure-webhook/
You can send data to Azure Sentinel custom tables via the Azure Monitor Logs destination. See documentation link below.
https://docs.cribl.io/stream/destinations-azure-monitor-logs/

1

Categories