mirror of
https://github.com/MicrosoftDocs/windows-itpro-docs.git
synced 2025-05-16 23:37:22 +00:00
AH_updates
This commit is contained in:
lomayor
parent
7c6997a8bb
commit
3449bd237e
@ -47,9 +47,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| Table | string | Table that contains the details of the event |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -96,6 +96,5 @@ ProcessCreationEvents
|
||||
|
||||
## Related topics
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Understand the schema](advanced-hunting-schema-reference.md)
|
||||
@ -73,9 +73,6 @@ For information on other tables in the Advanced hunting schema, see [the Advanc
|
||||
| IsAzureInfoProtectionApplied | boolean | Indicates whether the file is encrypted by Azure Information Protection |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -59,9 +59,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -67,9 +67,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| IsLocalAdmin | boolean | Boolean indicator of whether the user is a local administrator on the machine |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
@ -48,9 +48,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| MachineGroup | string | Machine group of the machine. This group is used by role-based access control to determine access to the machine |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -49,9 +49,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| IPAddresses | string | JSON array containing all the IP addresses assigned to the adapter, along with their respective subnet prefix and IP address space, such as public, private, or link-local |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -80,9 +80,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -63,9 +63,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
@ -71,9 +71,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -49,5 +49,3 @@ Table and column names are also listed within the Microsoft Defender Security Ce
|
||||
## Related topics
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -61,9 +61,6 @@ For information on other tables in the Advanced hunting schema, see [the Advance
|
||||
| AppGuardContainerId | string | Identifier for the virtualized container used by Application Guard to isolate browser activity |
|
||||
|
||||
## Related topics
|
||||
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
|
||||
@ -62,5 +62,3 @@ Microsoft security researchers regularly share Advanced hunting queries in a [de
|
||||
## Related topics
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Learn the query language](advanced-hunting.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
@ -135,6 +135,5 @@ For more information on Kusto query language and supported operators, see [Quer
|
||||
|
||||
## Related topics
|
||||
- [Advanced hunting overview](overview-hunting.md)
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
@ -69,3 +69,4 @@ The filter selections are added as additional query elements and the results are
|
||||
- [Use shared queries](advanced-hunting-shared-queries.md)
|
||||
- [Understand the schema](advanced-hunting-reference.md)
|
||||
- [Apply query best practices](advanced-hunting-best-practices.md)
|
||||
- [Custom detections overview](overview-custom-detections.md)
|
||||
Loading…
x
Reference in New Issue
Block a user