: This section includes the Analytics menu, where users create and manage Scheduled Query Rules and Near-Real-Time (NRT) detection rules to identify threats within logs.
: A specialized Investigation menu provides a parallel timeline and entity mapping to understand how an attack unfolded. TEKLYNX SENTINEL Interface
In Microsoft Sentinel, the navigation menu is the primary interface for managing security operations. It is organized into functional sections that allow users to ingest, detect, and respond to threats.