Chapter 4

Operational Excellence with KQL

After completing this chapter, you will be able to:

  • Understand the benefits of using KQL in IT operations

  • Learn to proactively detect and mitigate security threats, secure the cloud infrastructure, and enhance incident response capabilities

  • Catalog the key features and syntax of KQL

  • Integrate with machine learning algorithms

  • Create custom functions

  • Identify the steps for creating and executing advanced hunting queries with KQL

  • Leverage sample queries and online resources to learn from experts and improve skills

  • Bookmark the common security challenges and solutions in the cloud

  • Embed security checks and scans into DevOps pipelines

  • Query and validate infrastructure and application configurations

  • Harden ...

Get The Definitive Guide to KQL: Using Kusto Query Language for operations, defending, and threat hunting now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial