Giving Copilot for Security the Request it Needs to Generate Proper KQL Detections
Ask verbosely and you shall receive
Someone recently asked for a KQL query to use to detect an older threat called SocGhoulish that does some very specific things in an attempt to hijack accounts using drive-by-downloads masquerading a…
Keep reading with a 7-day free trial
Subscribe to Rod’s Blog to keep reading this post and get 7 days of free access to the full post archives.