MicrosoftDocs
diff --git a/‎articles/sentinel/TOC.yml
Lines changed: 4 additions & 0 deletions b/‎articles/sentinel/TOC.yml
Lines changed: 4 additions & 0 deletions
diff --git a/‎articles/sentinel/detect-threats-custom.md
Lines changed: 2 additions & 3 deletions b/‎articles/sentinel/detect-threats-custom.md
Lines changed: 2 additions & 3 deletions
diff --git a/‎articles/sentinel/media/tutorial-log4j-detection/custom-details.png
42.1 KB b/‎articles/sentinel/media/tutorial-log4j-detection/custom-details.png
42.1 KB
diff --git a/‎articles/sentinel/media/tutorial-log4j-detection/entity-mappings.png
34.3 KB b/‎articles/sentinel/media/tutorial-log4j-detection/entity-mappings.png
34.3 KB
diff --git a/‎articles/sentinel/media/tutorial-log4j-detection/find-template-create-rule.png
128 KB b/‎articles/sentinel/media/tutorial-log4j-detection/find-template-create-rule.png
128 KB
diff --git a/‎articles/sentinel/media/tutorial-log4j-detection/general-tab.png
40.3 KB b/‎articles/sentinel/media/tutorial-log4j-detection/general-tab.png
40.3 KB
diff --git a/‎articles/sentinel/media/tutorial-log4j-detection/large-query-window.png
70.2 KB b/‎articles/sentinel/media/tutorial-log4j-detection/large-query-window.png
70.2 KB
diff --git a/‎articles/sentinel/media/tutorial-log4j-detection/set-rule-logic-tab.png
85.9 KB b/‎articles/sentinel/media/tutorial-log4j-detection/set-rule-logic-tab.png
85.9 KB
diff --git a/‎articles/sentinel/media/tutorial-log4j-detection/small-query-window.png
29.5 KB b/‎articles/sentinel/media/tutorial-log4j-detection/small-query-window.png
29.5 KB
diff --git a/‎articles/sentinel/tutorial-customize-analytics-rule-query.md
Lines changed: 325 additions & 0 deletions b/‎articles/sentinel/tutorial-customize-analytics-rule-query.md
Lines changed: 325 additions & 0 deletions
@@ -23,6 +23,10 @@
     href: tutorial-respond-threats-playbook.md
   - name: Automatically enrich incident information
     href: tutorial-enrich-ip-information.md
+  - name: Detect Log4j vulnerability exploits
+    href: tutorial-log4j-detection.md
+  - name: Detect threats and produce enriched alerts
+    href: tutorial-customize-analytics-rule-query.md
   - name: Get started with notebooks and MSTICPy
     href: notebook-get-started.md
   - name: Create a Power BI report from Microsoft Sentinel
 
@@ -2,10 +2,9 @@
 title: Create custom analytics rules to detect threats with Microsoft Sentinel | Microsoft Docs
 description: Learn how to create custom analytics rules to detect security threats with Microsoft Sentinel. Take advantage of event grouping, alert grouping, and alert enrichment, and understand AUTO DISABLED.
 author: yelevin
-ms.topic: how-to
-ms.date: 01/30/2022
 ms.author: yelevin
-ms.custom: ignite-fall-2021
+ms.topic: how-to
+ms.date: 01/08/2023
 ---
 
 # Create custom analytics rules to detect threats