Open bittib010 opened 2 months ago
https://github.com/Azure/Azure-Sentinel/blob/928601ac12650d2a79371652dd34c2b1f40e885f/Hunting%20Queries/Microsoft%20365%20Defender/Cloud%20Apps/mass-downloads.yaml
Make sure they get copied "as they are" - currently they get stored in csv as one line. Which makes a comment anywhere in the query ruin the whole query
https://github.com/Azure/Azure-Sentinel/blob/928601ac12650d2a79371652dd34c2b1f40e885f/Hunting%20Queries/Microsoft%20365%20Defender/Cloud%20Apps/mass-downloads.yaml
Make sure they get copied "as they are" - currently they get stored in csv as one line. Which makes a comment anywhere in the query ruin the whole query