VOOZH

URL: https://learn.microsoft.com/en-us/azure/azure-monitor/reference/queries/awsguardduty

⇱ Example log table queries for AWSGuardDuty - Azure Monitor | Microsoft Learn

Note

Access to this page requires authorization. You can try signing in or .

Access to this page requires authorization. You can try .

Queries for the AWSGuardDuty table

For information on using these queries in the Azure portal, see Log Analytics tutorial. For the REST API, see Query.

High severity findings

Returns high severity findings summarize by activity type.

AWSGuardDuty
| where Severity > 7
| summarize count() by ActivityType

Feedback

Was this page helpful?

Additional resources

Last updated on