Merge pull request #50303 from KenMAG/Bugs

JillGrant615 · web-flow · commit 003713f1c6e0 · 2025-05-06T16:16:08.000-06:00
Revised table data to fix localization issue
diff --git a/learn-pr/wwl-sci/query-logs-azure-sentinel/3-understand-azure-sentinel-tables.yml b/learn-pr/wwl-sci/query-logs-azure-sentinel/3-understand-azure-sentinel-tables.yml
@@ -4,8 +4,8 @@ title: Understand Microsoft Sentinel tables
 metadata:
   title: Understand Microsoft Sentinel tables
   description: "Understand Microsoft Sentinel tables"
-  ms.date: 12/12/2023
-  author: wwlpublish
+  ms.date: 05/06/2025
+  author: KenMAG
   ms.author: kelawson
   ms.topic: unit
 durationInMinutes: 2
diff --git a/learn-pr/wwl-sci/query-logs-azure-sentinel/includes/3-understand-azure-sentinel-tables.md b/learn-pr/wwl-sci/query-logs-azure-sentinel/includes/3-understand-azure-sentinel-tables.md
@@ -1,14 +1,13 @@
-Microsoft Sentinel has Analytic Rules that will generate Alerts and Incidents based on querying the tables within Log Analytics.  The primary tables to manage alerts and incidents are SecurityAlert and SecurityIncident.  Microsoft Sentinel provides tables to be a repository of indicators and watchlists.
+Microsoft Sentinel has Analytic Rules that generate Alerts and Incidents based on querying the tables within Log Analytics. The primary tables to manage alerts and incidents are SecurityAlert and SecurityIncident. Microsoft Sentinel provides tables to be a repository of indicators and watchlists.
 
 > [!NOTE]
-> Some of the Sentinel Data Connectors will ingest alerts directly.  
+> Some of the Sentinel Data Connectors ingest alerts directly.  
 
 The table below is the Microsoft Sentinel feature related tables.
 
 | Table| Description|
 | :--- | :--- |
-| SecurityAlert| Contains Alerts Generated from Sentinel Analytical Rules.  Also, it could include Alerts created directly from a Sentinel Data Connector|
-| SecurityIncident| Alerts can generate Incidents.  Incidents are related to Alert(s).|
-| ThreatIntelligenceIndicator| Contains user-created or data connector ingested Indicators such as File Hashes, IP Addresses, Domains|
-| Watchlist| A Microsoft Sentinel watchlist contains imported data.|
-
+| `SecurityAlert`| Contains Alerts Generated from Sentinel Analytical Rules. Also, it could include Alerts created directly from a Sentinel Data Connector|
+| `SecurityIncident`| Alerts can generate Incidents. Incidents are related to Alert(s).|
+| `ThreatIntelligenceIndicator`| Contains user-created or data connector ingested Indicators such as File Hashes, IP Addresses, Domains|
+| `Watchlist`| A Microsoft Sentinel watchlist contains imported data.|
diff --git a/learn-pr/wwl-sci/query-logs-azure-sentinel/index.yml b/learn-pr/wwl-sci/query-logs-azure-sentinel/index.yml
@@ -3,15 +3,15 @@ uid: learn.wwl.query-logs-azure-sentinel
 metadata:
   title: Query logs in Microsoft Sentinel
   description: "Query logs in Microsoft Sentinel"
-  ms.date: 12/12/2023
-  author: wwlpublish
+  ms.date: 05/06/2025
+  author: KenMAG
   ms.author: kelawson
   ms.topic: module
   ms.service: microsoft-sentinel
 title: Query logs in Microsoft Sentinel
-summary: As a Security Operations Analyst, you must understand the tables, fields, and data ingested in your workspace.  Learn how to query the most used data tables in Microsoft Sentinel.
+summary: As a Security Operations Analyst, you must understand the tables, fields, and data ingested in your workspace. Learn how to query the most used data tables in Microsoft Sentinel.
 abstract: |
-  Upon completion of this module, the learner will be able to:
+  Upon completion of this module, the learner is able to:
   - Use the Logs page to view data tables in Microsoft Sentinel
   - Query the most used tables using Microsoft Sentinel
 prerequisites: |
@@ -22,7 +22,7 @@ levels:
 roles:
 - security-operations-analyst
 products:
-- azure
+- microsoft-sentinel
 subjects:
 - cloud-security
 units:
