File tree Expand file tree Collapse file tree 1 file changed +10
-0
lines changed Expand file tree Collapse file tree 1 file changed +10
-0
lines changed Original file line number Diff line number Diff line change @@ -46,6 +46,16 @@ Capabilities in public preview:
4646- Direct translations listed in the article, [ Splunk to Kusto cheat sheet] ( /azure/data-explorer/kusto/query/splunk-cheat-sheet )
4747- Review translated query error feedback with edit capability to save time in the detection rule translation process
4848
49+ Here are some of the priorities that are important to us as we continue to develop the translation technology:
50+
51+ - Splunk Common Information Model (CIM) to Microsoft Sentinel's Advanced Security Information Model (ASIM) translation support
52+ - Translated queries feature a completeness status with translation states
53+ - Multiple data sources and index
54+ - Rule correlations
55+ - Support for macros
56+ - Support for lookups
57+ - Complex queries with joins
58+
4959## Start the SIEM migration experience
5060
51611 . Navigate to Microsoft Sentinel in the [ Azure portal] ( https://portal.azure.com ) , under ** Content management** , select ** Content hub** .
You can’t perform that action at this time.
0 commit comments