Recon your Azure resources with Kusto Query Language (KQL)
Latest episode of #KnowOps is out. I introduce you to how I sift through millions of records of audit data in Azure in a matter of seconds using KQL, the Kusto Query Lanugage. I use this approach to dig through data in Log Analytics, look for vulnerable hosts with misconfigurations in Azure Resource Graph, and do threat hunting in Azure Sentinel.
Hope you like it.