Loading...

Azure WAF Notebook for Microsoft Sentinel

Azure WAF Notebook for Microsoft Sentinel

Azure Web Application Firewall (Azure WAFdetects SQLI attacks and applies block mitigations by default. In certain instances, this could be a false positive that requires investigation and creation of Azure WAF exclusions. In order to complete a successful investigation, full context about the attack is needed and a process that guides you through the investigation is required. Such a guided investigation process is automated in this Microsoft Sentinel Notebook and allows you to tune Azure WAF policy with minimal user interaction.

This Notebook analyzes SQL injection attacks on Azure WAF integrated with Azure Front Door premium and implements automated exclusions.

This notebook is released in preview.


You can find step-by-step instructions on how to use the Notebook here: https://techcommunity.microsoft.com/t5/microsoft-sentinel-blog/tutorial-get-started-with-azure-waf-investigation-notebook/ba-p/3733438

 

Published on:

Learn more
Azure Network Security Blog articles
Azure Network Security Blog articles

Azure Network Security Blog articles

Share post:

Related posts

Introducing Azure DevOps ID Token Refresh and Terraform Task Version 5

We are excited to share some recent updates that improve the experience of using Workload identity federation (OpenID Connect) with Azure DevO...

19 hours ago

Webinar: Translate Dynamics 365 Data in Real-Time using Azure AI Translator with our New App!

Is your business operating across multiple regions? Managing multilingual CRM data in Microsoft Dynamics 365 can lead to communication gaps, d...

1 day ago

Simplify Audit Log Export from Dataverse for Compliance and Governance Using Azure Synapse Link and Power BI

Audit logs are essential for enhancing security, meeting regulatory requirements, and monitoring changes made to business data within Microsof...

2 days ago

Microsoft Fabric: Changes to delegation capabilities for Microsoft Azure OpenAI tenant settings

Starting May 12, 2025, Microsoft Fabric will update tenant settings to allow tenant admins to control the “Users can use Copilot and oth...

3 days ago

Copilot Studio – Connect your data to Azure OpenAI for generative answers

We are announcing the Connect your data to Azure OpenAI for generative answers feature for Copilot Studio. This feature allows you to connect ...

3 days ago

Microsoft Azure: You’re not eligible for an Azure free account

Got the below message, while trying to setup the Microsoft Azure Trial for 30 days. You’re not eligible for an Azure free account Don...

6 days ago

How to create Microsoft Azure 30 days trial?

Microsoft Azure is a comprehensive cloud computing platform developed by Microsoft. It provides a wide range of cloud services, including comp...

6 days ago
Stay up to date with latest Microsoft Dynamics 365 and Power Platform news!
* Yes, I agree to the privacy policy