ARGOS Cloud Security for Microsoft Sentinel
Solution: ARGOSCloudSecurity
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊
| Attribute | Value |
|---|---|
| Publisher | ARGOS Cloud Security |
| Support Tier | Partner |
| Support Link | https://argos-security.io/contact-us |
| Categories | domains |
| Version | 2.0.0 |
| Author | ARGOS Cloud Security - support@argos-security.io |
| First Published | 2022-08-16 |
| Solution Folder | ARGOSCloudSecurity |
| Marketplace | Azure Marketplace · Popularity: ⚪ Very Low (0%) |
The ARGOS Cloud Security integration for Microsoft Sentinel allows you to have all your important cloud security events in one place. This enables you to easily create dashboards, alerts, and correlate events across multiple systems. Overall this will improve your organization's security posture and security incident response.
Microsoft Sentinel Solutions provide a consolidated way to acquire Microsoft Sentinel content like data connectors, workbooks, analytics, and automations in your workspace with a single deployment step.
Contents
Data Connectors
This solution provides 1 data connector(s):
🔶 CLv1: This connector ingests into a table that uses the legacy Custom Log V1 schema format with type-suffixed column names (e.g.
_s,_d,_b,_t,_g). Note: identification is based on column name suffixes which are also permitted in CLv2, so this classification may not always be accurate.
Tables Used
This solution uses 1 table(s):
| Table | Used By Connectors | Used By Content |
|---|---|---|
ARGOS_CL 🔶 |
ARGOS Cloud Security | Analytics, Workbooks |
🔶 CLv1: This table uses the legacy Custom Log V1 schema format with type-suffixed column names (e.g.
_s,_d,_b,_t,_g). Note: identification is based on column name suffixes which are also permitted in CLv2, so this classification may not always be accurate.
Content Items
This solution includes 2 content item(s):
| Content Type | Count |
|---|---|
| Analytic Rules | 1 |
| Workbooks | 1 |
Analytic Rules
| Name | Severity | Tactics | Tables Used |
|---|---|---|---|
| ARGOS Cloud Security - Exploitable Cloud Resources | High | InitialAccess | ARGOS_CL |
Workbooks
| Name | Tables Used |
|---|---|
| ARGOSCloudSecurityWorkbook | ARGOS_CL |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · 📊