Query error in Machine Learning examples notebook

Azure / Azure-Sentinel-Notebooks

Interactive Azure Sentinel Notebooks provides security insights and actions to investigate anomalies and hunt for malicious behaviors.

MIT License

551 stars 190 forks source link

Closed ianhelle closed 2 years ago

ianhelle commented 2 years ago

In Markov chain anomaly section we use qry_prov.Azure.OfficeActivity - this should be qry_prov.Office365.OfficeActivity.

ianhelle commented 2 years ago

Mis-identified the cause. The data files are downloaded to ./src/data, not ./data - so the paths to the LocalData provider are incorrect.