{"id":5403,"date":"2020-07-22T09:40:59","date_gmt":"2020-07-22T16:40:59","guid":{"rendered":"https:\/\/blogs.infoblox.com\/?p=5403"},"modified":"2022-10-20T11:46:24","modified_gmt":"2022-10-20T18:46:24","slug":"using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation","status":"publish","type":"post","link":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/","title":{"rendered":"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation"},"content":{"rendered":"<p><span style=\"font-weight: 400;\">Over the years, organizations started putting together a security stack as part of their defense-in-depth strategy. Each tool was built to address a specific threat vector. However, these tools did not talk to each other or readily share data, forcing security operations teams to manually gather information needed to correlate events.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Microsoft has <\/span><a href=\"https:\/\/techcommunity.microsoft.com\/t5\/azure-sentinel\/new-azure-sentinel-connectors\/ba-p\/1535786\"><span style=\"font-weight: 400;\">announced<\/span><\/a><span style=\"font-weight: 400;\"> a dozen new connectors that automatically collect data from several leading security solutions, including Infoblox, into Azure Sentinel. These connectors help security teams to gather and analyze data from various sources much faster, lowering time to remediation.\u00a0<\/span><\/p>\n<h3><b>Visibility is Key for Security Operations<\/b><\/h3>\n<p><span style=\"font-weight: 400;\">The first place to start addressing operational challenges is with visibility. You need a platform that provides ubiquitous visibility of everything that\u2019s on the network \u2013 physical, virtual, cloud, branch, and IoT resources. In order to help understand the severity of network and security events, leveraging network context is key. Network context includes things like criticality of the compromised asset, location of the asset, audit trail, and history of destinations accessed.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Your DDI (DNS, DHCP, and IPAM) platform knows, at any given point in time, what devices are on your network. This is because any time a device joins a network, the first thing it will do is to request an IP address from the DHCP server. The DHCP server is also able to identify the characteristics of the device (type of device, OS, version) based on the initial DHCP request. This information is collected and put into a database (IPAM). Additional discovery data can also be gathered to further augment the information of the device (e.g. username, switch port, access point, physical location). All of this information becomes really important if you have to conduct an investigation based on an IP address.\u00a0<\/span><\/p>\n<h3><b>Value of DNS, DHCP to a SIEM for Threat Correlation and Hunting<\/b><\/h3>\n<p><span style=\"font-weight: 400;\">DHCP\/DNS data is a gold mine that can be leveraged in a SIEM, like Azure Sentinel, to help accelerate threat correlation and hunting.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Event Correlation &#8211; Without DHCP data, it\u2019s hard to correlate disparate events related to the same device under investigation, especially in dynamic environments. DHCP servers are responsible for allocating IP addresses that are used to identify the specific devices involved in security events. A DHCP assignment signals the insertion of a device onto the network and hence is an audit trail of devices on the network.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Scope of breach &#8211; DNS query data provides a \u201cclient-centric\u201d record of activity. This includes internal activity inside the security perimeter, BYOD, and IoT devices and provides an excellent basis to profile device and user activity. Without DNS and DHCP, operations teams may have limited visibility into what resources a client has been accessing. DNS provides a universal audit trail of services and resources it has recently accessed.<\/span><span style=\"font-weight: 400;\">\u00a0<\/span><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-5404 size-full\" src=\"https:\/\/blogs.infoblox.com\/wp-content\/uploads\/Infoblox-Azure-Sentinal-1.png\" alt=\"\" width=\"1600\" height=\"834\" srcset=\"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/Infoblox-Azure-Sentinal-1.png 1600w, https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/Infoblox-Azure-Sentinal-1-300x156.png 300w, https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/Infoblox-Azure-Sentinal-1-1024x534.png 1024w, https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/Infoblox-Azure-Sentinal-1-768x400.png 768w, https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/Infoblox-Azure-Sentinal-1-1536x801.png 1536w\" sizes=\"auto, (max-width: 1600px) 100vw, 1600px\" \/><\/p>\n<p><span style=\"font-weight: 400;\">Using the Infoblox connector, Azure Sentinel users can get quick and easy access to this gold mine of data, analyze and correlate the information, and respond to events more efficiently.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Learn how to implement the Infoblox connector for Azure Sentinel <\/span><a href=\"https:\/\/docs.microsoft.com\/en-us\/azure\/sentinel\/connect-infoblox\"><span style=\"font-weight: 400;\">here<\/span><\/a><span style=\"font-weight: 400;\">.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Read more about Infoblox solutions <\/span><a href=\"http:\/\/www.infoblox.com\"><span style=\"font-weight: 400;\">here<\/span><\/a><span style=\"font-weight: 400;\">.\u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Over the years, organizations started putting together a security stack as part of their defense-in-depth strategy. Each tool was built to address a specific threat vector. However, these tools did not talk to each other or readily share data, forcing security operations teams to manually gather information needed to correlate events.\u00a0 Microsoft has announced a [&hellip;]<\/p>\n","protected":false},"author":227,"featured_media":4035,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"inline_featured_image":false,"_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[2],"tags":[300,82,40,15,64,49,98],"class_list":{"0":"post-5403","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-security","8":"tag-azure-sentinal","9":"tag-microsoft-azure","10":"tag-threat-intelligence","11":"tag-security","12":"tag-reporting-and-analytics","13":"tag-mitigate-threats","14":"tag-microsoft","15":"entry"},"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.3 (Yoast SEO v27.3) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation<\/title>\n<meta name=\"description\" content=\"DHCP and DNS Data can be used to diagnose ongoing problems in your network. Find out how this data can be analyzed in Azure Sentinel to detect threats faster.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation\" \/>\n<meta property=\"og:description\" content=\"DHCP and DNS Data can be used to diagnose ongoing problems in your network. Find out how this data can be analyzed in Azure Sentinel to detect threats faster.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/\" \/>\n<meta property=\"og:site_name\" content=\"Infoblox Blog\" \/>\n<meta property=\"article:published_time\" content=\"2020-07-22T16:40:59+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-10-20T18:46:24+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/CDC-picture-6.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"600\" \/>\n\t<meta property=\"og:image:height\" content=\"378\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Krupa Srivatsan\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Krupa Srivatsan\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/\"},\"author\":{\"name\":\"Krupa Srivatsan\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#\\\/schema\\\/person\\\/3cd3a5f9e497b09854c3bc168f9365d5\"},\"headline\":\"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation\",\"datePublished\":\"2020-07-22T16:40:59+00:00\",\"dateModified\":\"2022-10-20T18:46:24+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/\"},\"wordCount\":521,\"publisher\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/CDC-picture-6.jpg\",\"keywords\":[\"Azure Sentinal\",\"Microsoft Azure\",\"Threat Intelligence\",\"Security\",\"Reporting and Analytics\",\"mitigate threats\",\"Microsoft\"],\"articleSection\":[\"Security\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/\",\"name\":\"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/CDC-picture-6.jpg\",\"datePublished\":\"2020-07-22T16:40:59+00:00\",\"dateModified\":\"2022-10-20T18:46:24+00:00\",\"description\":\"DHCP and DNS Data can be used to diagnose ongoing problems in your network. Find out how this data can be analyzed in Azure Sentinel to detect threats faster.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/#primaryimage\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/CDC-picture-6.jpg\",\"contentUrl\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/CDC-picture-6.jpg\",\"width\":600,\"height\":378,\"caption\":\"Set Filters\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/security\\\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Security\",\"item\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/category\\\/security\\\/\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/\",\"name\":\"infoblox.com\\\/blog\\\/\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#organization\",\"name\":\"Infoblox\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/infoblox-logo-2.svg\",\"contentUrl\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/wp-content\\\/uploads\\\/infoblox-logo-2.svg\",\"width\":137,\"height\":30,\"caption\":\"Infoblox\"},\"image\":{\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/#\\\/schema\\\/person\\\/3cd3a5f9e497b09854c3bc168f9365d5\",\"name\":\"Krupa Srivatsan\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/live-infoblox-blog.pantheonsite.io\\\/wp-content\\\/uploads\\\/avatar_user_227_1571768571-96x96.jpg\",\"url\":\"https:\\\/\\\/live-infoblox-blog.pantheonsite.io\\\/wp-content\\\/uploads\\\/avatar_user_227_1571768571-96x96.jpg\",\"contentUrl\":\"https:\\\/\\\/live-infoblox-blog.pantheonsite.io\\\/wp-content\\\/uploads\\\/avatar_user_227_1571768571-96x96.jpg\",\"caption\":\"Krupa Srivatsan\"},\"description\":\"Krupa is Senior Director of Product Marketing at Infoblox. She has 18 years of experience in technology in various roles including software development, product management and product marketing. Currently, she is responsible for messaging, positioning and bringing to market Infoblox\u2019s security solutions that ease security operations and provide DNS based security. She has an MBA from University of California, Haas School of Business and a Computer Science Engineering degree.\",\"url\":\"https:\\\/\\\/www.infoblox.com\\\/blog\\\/author\\\/krupa-srivatsan\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation","description":"DHCP and DNS Data can be used to diagnose ongoing problems in your network. Find out how this data can be analyzed in Azure Sentinel to detect threats faster.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/","og_locale":"en_US","og_type":"article","og_title":"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation","og_description":"DHCP and DNS Data can be used to diagnose ongoing problems in your network. Find out how this data can be analyzed in Azure Sentinel to detect threats faster.","og_url":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/","og_site_name":"Infoblox Blog","article_published_time":"2020-07-22T16:40:59+00:00","article_modified_time":"2022-10-20T18:46:24+00:00","og_image":[{"width":600,"height":378,"url":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/CDC-picture-6.jpg","type":"image\/jpeg"}],"author":"Krupa Srivatsan","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Krupa Srivatsan","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/#article","isPartOf":{"@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/"},"author":{"name":"Krupa Srivatsan","@id":"https:\/\/www.infoblox.com\/blog\/#\/schema\/person\/3cd3a5f9e497b09854c3bc168f9365d5"},"headline":"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation","datePublished":"2020-07-22T16:40:59+00:00","dateModified":"2022-10-20T18:46:24+00:00","mainEntityOfPage":{"@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/"},"wordCount":521,"publisher":{"@id":"https:\/\/www.infoblox.com\/blog\/#organization"},"image":{"@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/#primaryimage"},"thumbnailUrl":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/CDC-picture-6.jpg","keywords":["Azure Sentinal","Microsoft Azure","Threat Intelligence","Security","Reporting and Analytics","mitigate threats","Microsoft"],"articleSection":["Security"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/","url":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/","name":"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation","isPartOf":{"@id":"https:\/\/www.infoblox.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/#primaryimage"},"image":{"@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/#primaryimage"},"thumbnailUrl":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/CDC-picture-6.jpg","datePublished":"2020-07-22T16:40:59+00:00","dateModified":"2022-10-20T18:46:24+00:00","description":"DHCP and DNS Data can be used to diagnose ongoing problems in your network. Find out how this data can be analyzed in Azure Sentinel to detect threats faster.","breadcrumb":{"@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/#primaryimage","url":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/CDC-picture-6.jpg","contentUrl":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/CDC-picture-6.jpg","width":600,"height":378,"caption":"Set Filters"},{"@type":"BreadcrumbList","@id":"https:\/\/www.infoblox.com\/blog\/security\/using-dhcp-and-dns-data-in-azure-sentinel-for-faster-threat-correlation\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.infoblox.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Security","item":"https:\/\/www.infoblox.com\/blog\/category\/security\/"},{"@type":"ListItem","position":3,"name":"Using DHCP and DNS Data in Azure Sentinel For Faster Threat Correlation"}]},{"@type":"WebSite","@id":"https:\/\/www.infoblox.com\/blog\/#website","url":"https:\/\/www.infoblox.com\/blog\/","name":"infoblox.com\/blog\/","description":"","publisher":{"@id":"https:\/\/www.infoblox.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.infoblox.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.infoblox.com\/blog\/#organization","name":"Infoblox","url":"https:\/\/www.infoblox.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.infoblox.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/infoblox-logo-2.svg","contentUrl":"https:\/\/www.infoblox.com\/blog\/wp-content\/uploads\/infoblox-logo-2.svg","width":137,"height":30,"caption":"Infoblox"},"image":{"@id":"https:\/\/www.infoblox.com\/blog\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.infoblox.com\/blog\/#\/schema\/person\/3cd3a5f9e497b09854c3bc168f9365d5","name":"Krupa Srivatsan","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/live-infoblox-blog.pantheonsite.io\/wp-content\/uploads\/avatar_user_227_1571768571-96x96.jpg","url":"https:\/\/live-infoblox-blog.pantheonsite.io\/wp-content\/uploads\/avatar_user_227_1571768571-96x96.jpg","contentUrl":"https:\/\/live-infoblox-blog.pantheonsite.io\/wp-content\/uploads\/avatar_user_227_1571768571-96x96.jpg","caption":"Krupa Srivatsan"},"description":"Krupa is Senior Director of Product Marketing at Infoblox. She has 18 years of experience in technology in various roles including software development, product management and product marketing. Currently, she is responsible for messaging, positioning and bringing to market Infoblox\u2019s security solutions that ease security operations and provide DNS based security. She has an MBA from University of California, Haas School of Business and a Computer Science Engineering degree.","url":"https:\/\/www.infoblox.com\/blog\/author\/krupa-srivatsan\/"}]}},"_links":{"self":[{"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/posts\/5403","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/users\/227"}],"replies":[{"embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/comments?post=5403"}],"version-history":[{"count":2,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/posts\/5403\/revisions"}],"predecessor-version":[{"id":8155,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/posts\/5403\/revisions\/8155"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/media\/4035"}],"wp:attachment":[{"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/media?parent=5403"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/categories?post=5403"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.infoblox.com\/blog\/wp-json\/wp\/v2\/tags?post=5403"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}