SC-200 • Mock Exam 75
Free SC-200 mock exam — 25 questions with explanations. Set 75. No signup required.
You are a SOC analyst using Microsoft Sentinel. You need to create a hunting query that searches for unusual outbound RDP connections from workstations. Which KQL operators or functions would be most essential for this query?