Microsoft Sentinel
Forward finding events to Microsoft Sentinel.
Forwards finding and remediation events from Basirah to Microsoft Sentinel for correlation with your broader security telemetry.
Prerequisites
- Microsoft Sentinel workspace
- Log Analytics workspace ID and shared key
Authentication
API key — workspace shared key.
Configuration
workspace_id string required Log Analytics workspace ID.
shared_key string required Log Analytics workspace shared key.
log_type string Custom log type name for Basirah events.
Data flow
Forwards normalized finding events to Microsoft Sentinel for SIEM correlation and analysis.