Forum Discussion
API for Sentinel Alerts and Cases
Where can I find docs to query new alerts and cases and interact with then in Azure Sentinel.
Ryan Heffernan
Microsoft
MicrosoftHello,
We have a GitHub repo with sample queries and detections: https://github.com/Azure/Azure-Sentinel
General documentation is here: https://docs.microsoft.com/en-us/azure/sentinel/
Let me know if that doesn't give you what you need.
What would be great to include with a deployment of Sentinel would be default alerts based on the Data Collections that you add.
Because then they almost have a story to try to use the data with and set up playbooks for. Ryan Heffernan
Koby KorenThank you for you feedback.
The team is currently working on adding them as part for the experience.
- Ryan Heffernan
Great feedback, thanks Lachlan! (CC: Koby Koren and Shalini Pasupneti)
