$_ cmd

← launcher · browse all

sentinel

Microsoft Sentinel

Azure Sentinel

/microsoft-sentinel

in plain english

Cloud-native SIEM + SOAR — collect logs from anywhere (Microsoft, AWS, GCP, on-prem, third-party SaaS), hunt threats with KQL, and automate response with playbooks.

official microsoft definition

A scalable, cloud-native security information and event management (SIEM) solution with built-in security orchestration, automation, and response (SOAR) capabilities, powered by AI.

plans & eligibility

  • Pay-as-you-go (per GB ingested) or commitment tiers
  • Some Microsoft data sources free (sign-in logs, etc.)
$ open portal → microsoft learn docs →

related on aguidetocloud

verified