This is the AzureLogAnalytics backend for pySigma. It provides the package sigma.backends.ala with the AzureLogAnalyticsBackend class.
Further, it contains the following processing pipelines in sigma.pipelines.ala:
- azure_log_analytics_windows_pipeline: AzureLogAnalytics Windows log support
It supports the following output formats:
- default: plain AzureLogAnalytics queries
This backend is currently maintained by:
- SOC Prime Team