Azure MITRE Based Threat Hunting

Overview

This overview will serve as a roadmap to Threat Hunting in Azure series. Throughout this series we will map threats in Azure to MITRE Att&ck. Doing so will aide you in better understanding MITRE Att&ck as well as improving your Azure security knowledge, and tenant's security posture.

Additional goals for this section of the Azure CTHFM include:

Provide mitigation recommendations for MITRE Tactics.
Include KQL queries and sanitized log samples for specific techniques.

Last updated 28 days ago