New Microsoft Sentinel PowerShell Module

Introduction

Microsoft has released the Az.SecurityInsights 3.0 PowerShell module, bringing good news for all Microsoft Sentinel users. This new module enhances the automation capabilities of Microsoft Sentinel, allowing administrators to streamline their security operations.

Microsoft Sentinel is a cloud-native security information event management (SIEM) and security orchestration automated response (SOAR) solution. It provides intelligent security analytics and threat intelligence across the enterprise, providing a single solution for alert detection, threat visibility, proactive hunting, and threat response.

Az.SecurityInsights PowerShell Module

The Az.SecurityInsights 3.0 PowerShell module is a significant addition to the toolset of Microsoft Sentinel users. It allows for the automation of various tasks, making it easier for administrators to manage their security operations.

  • Get-AzSentinelAlertRule
  • Get-AzSentinelAlertRuleAction
  • Get-AzSentinelAlertRuleTemplate
  • Get-AzSentinelAutomationRule
  • Get-AzSentinelBookmark
  • Get-AzSentinelBookmarkRelation
  • Get-AzSentinelDataConnector
  • Get-AzSentinelEnrichment
  • Get-AzSentinelEntity
  • Get-AzSentinelEntityActivity
  • Get-AzSentinelEntityInsight
  • Get-AzSentinelEntityQuery
  • Get-AzSentinelEntityQueryTemplate
  • Get-AzSentinelEntityRelation
  • Get-AzSentinelEntityTimeline
  • Get-AzSentinelIncident
  • Get-AzSentinelIncidentAlert
  • Get-AzSentinelIncidentBookmark
  • Get-AzSentinelIncidentComment
  • Get-AzSentinelIncidentEntity
  • Get-AzSentinelIncidentRelation
  • Get-AzSentinelMetadata
  • Get-AzSentinelOnboardingState
  • Get-AzSentinelSetting
  • Get-AzSentinelThreatIntelligenceIndicator
  • Get-AzSentinelThreatIntelligenceIndicatorMetric
  • Invoke-AzSentinelThreatIntelligenceIndicatorQuery
  • New-AzSentinelAlertRule
  • New-AzSentinelAlertRuleAction
  • New-AzSentinelAutomationRule
  • New-AzSentinelBookmark
  • New-AzSentinelBookmarkRelation
  • New-AzSentinelDataConnector
  • New-AzSentinelEntityQuery
  • New-AzSentinelIncident
  • New-AzSentinelIncidentComment
  • New-AzSentinelIncidentRelation
  • New-AzSentinelIncidentTeam
  • New-AzSentinelOnboardingState
  • Remove-AzSentinelAlertRule
  • Remove-AzSentinelAlertRuleAction
  • Remove-AzSentinelAutomationRule
  • Remove-AzSentinelBookmark
  • Remove-AzSentinelBookmarkRelation
  • Remove-AzSentinelDataConnector
  • Remove-AzSentinelEntityQuery
  • Remove-AzSentinelIncident
  • Remove-AzSentinelIncidentComment
  • Remove-AzSentinelIncidentRelation
  • Remove-AzSentinelOnboardingState
  • Test-AzSentinelDataConnectorCheckRequirement
  • Update-AzSentinelAlertRule
  • Update-AzSentinelAlertRuleAction
  • Update-AzSentinelAutomationRule
  • Update-AzSentinelBookmark
  • Update-AzSentinelBookmarkRelation
  • Update-AzSentinelDataConnector
  • Update-AzSentinelEntityQuery
  • Update-AzSentinelIncident
  • Update-AzSentinelIncidentComment
  • Update-AzSentinelIncidentRelation
  • Update-AzSentinelSetting

You can download the updated Excel spreadsheet from my GitHub page, which provides a comprehensive overview of the capabilities of the Az.SecurityInsights 3.0 PowerShell module.

Leave a Reply

Contact me

If you’re interested in learning about New Microsoft Sentinel PowerShell Module. I can help you understand how this solution can benefit your organization and provide a customized solution tailored to your specific needs.

Table of Contents