Optimize your SOC with SIEM and XDR Recommendations

Use the Microsoft XDR optimization feature to improve a unified SIEM and XDR environment

Jan 9, 2025 Microsoft Sentinel, XDR

Bringing Microsoft Sentinel Workbooks to the Microsoft XDR Portal

Microsoft has added the Microsoft Sentinel Workbooks to the XDR portal

Dec 11, 2024 Microsoft XDR, Workbooks

Upload your analytic rules to Azure Devops

Today we will create our detection rules and make them available in Azure Devops

Dec 5, 2024 Microsoft Sentinel, Devops

Generate ready to use analytic rules

We will use a script I recently created to generate a set of analytic rules, ready to be used in Microsoft Sentinel.

Jun 23, 2024 Microsoft Sentinel, Analytic Rules

Manage permissions for Microsoft Sentinel across Multiple Environments with Lighthouse

Jan 4, 2024 Microsoft Sentinel, Lighthouse

Monitor and Respond to Security Threats with Azure Sentinel

Start use Azure Sentinel for your organization.

Apr 3, 2023 Microsoft Sentinel, Information

Start defending, but watch your DNS

Once we start defending our environments, what is there to lookout for outside your Microsoft environment?

Feb 1, 2023 Domains, DNS

Infrastructure as Code

The first bits of Infrastructure as Code in Azure to deploy your first resources!

Dec 8, 2022 Azure, Infrastructure as Code

The Kusto Detective Agency

Introduction Recently I started with Kusto Query Language (KQL) to explore the possibility of making lots of data useful or search for specific answers within an environment which contains lots of...

Nov 14, 2022 KQL, Kusto Detective Agency

Get started with KQL today!

What is KQL? So, maybe you have heard colleagues talk about it, see articles about advanced KQL queries or maybe you are just curious on how to get grip on certain logging data that resides within...

Nov 14, 2022 KQL, What is KQL