内容目录
下面列出了每个实验室练习和演示的超链接。
实验室
| 模块 | 实验室 |
|---|---|
| Learning Path 1 - Mitigate threats using Microsoft Defender XDR | 练习 1 - 探索 Microsoft Defender XDR |
| Learning Path 2 - Mitigate threats using Microsoft Defender for Endpoint | 练习 1 - 部署 Microsoft Defender for Endpoint |
| Learning Path 2 - Mitigate threats using Microsoft Defender for Endpoint | 练习 2 - 使用 Microsoft Defender for Endpoint 缓解攻击 |
| Learning Path 3 - Mitigate threats using Microsoft Defender for Cloud | 练习 1 - 启用 Microsoft Defender for Cloud |
| Learning Path 3 - Mitigate threats using Microsoft Defender for Cloud | 练习 2 - 使用 Microsoft Defender for Cloud 缓解威胁 |
| Learning Path 4 - Create queries for Microsoft Sentinel using Kusto Query Language (KQL) | 练习 1 - 使用 Kusto 查询语言 (KQL) 为 Microsoft Sentinel 创建查询 |
| Learning Path 5 - Configure your Microsoft Sentinel environment | 练习 1 - 配置 Microsoft Sentinel 环境 |
| Learning Path 6 - Connect logs to Microsoft Sentinel | 练习 1 - 使用数据连接器将数据连接到 Microsoft Sentinel |
| Learning Path 6 - Connect logs to Microsoft Sentinel | 练习 2 - 使用数据连接器将 Windows 设备连接到 Microsoft Sentinel |
| Learning Path 6 - Connect logs to Microsoft Sentinel | 练习 3 - 使用数据连接器将 Linux 主机连接到 Microsoft Sentinel |
| Learning Path 6 - Connect logs to Microsoft Sentinel | 练习 4 - 使用数据连接器将 Defender XDR 连接到 Microsoft Sentinel |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 10 - 创建工作簿 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 11 - 在 Microsoft Sentinel 中使用存储库 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 1 - 修改 Microsoft 安全规则 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 2 - 创建 Playbook |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 3 - 根据模板创建计划查询 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 4 - 探索实体行为分析 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 5 - 了解检测建模 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 6 - 进行攻击 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 7 - 创建检测 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 8 - 调查事件 |
| Learning Path 7 - Create detections and perform investigations using Microsoft Sentinel | 练习 9 - 创建 ASIM 分析程序 |
| Learning Path 8 - Perform threat hunting in Microsoft Sentinel | 练习 1 - 在 Microsoft Sentinel 中执行威胁搜寻 |
| Learning Path 8 - Perform threat hunting in Microsoft Sentinel | 练习 2 - 使用 Notebook 通过 Microsoft Sentinel 进行威胁搜寻 |