Exam4Training

What should you use?

exams

You create a hunting query in Azure Sentinel.

You need to receive a notification in the Azure portal as soon as the hunting query detects a match on the query. The solution must minimize effort.

What should you use?
A . a playbook
B. a notebook
C. a livestream
D. a bookmark

Answer: C

Explanation:

Use livestream to run a specific query constantly, presenting results as they come in.

Reference: https://docs.microsoft.com/en-us/azure/sentinel/hunting

Latest SC-200 Dumps Valid Version with 75 Q&As

Latest And Valid Q&A | Instant Download | Once Fail, Full Refund

Instant Download SC-200 PDF     SC-200 Questions Online Training
Exit mobile version