Introduction Detecting anomalies in administrator accounts, it’s something worth checking from time to time The Sentinel query is designed to analyse security events related to special privileges granted to user accounts within the last 30 days. Tracking and analysing which special privileges have been assigned to user accounts, identifying potential security risks or policy violations…