You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/sentinel/siem-migration.md
+1-1Lines changed: 1 addition & 1 deletion
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -54,7 +54,7 @@ Current capabilities:
54
54
-**Schema Mapping (Preview)** creates logical links for the translated rules by mapping Splunk data sources to Microsoft Sentinel tables, and Splunk lookups to watchlists.
55
55
- Translated query review provides error feedback with edit capability to save time in the detection rule translation process.
56
56
-**Translation State** indicating how completely SPL syntax is translated to KQL at the grammatical level.
57
-
- Support for Splunk macros translation using inline replacement macro definition within SPL queries
57
+
- Support for Splunk macros translation using inline replacement macro definition within SPL queries.
58
58
- Splunk Common Information Model (CIM) to Microsoft Sentinel's Advanced Security Information Model (ASIM) translation support.
59
59
- Downloadable pre-migration and post-migration summary
0 commit comments