Discover how Security Orchestration, Automation, and Response (SOAR) in Microsoft Sentinel can streamline your cybersecurity operations. This guide unpacks the core components of SOAR, illustrating…
All about M365, Azure and Security
M365, Azure and Security Posts
By using Microsoft Defender for Endpoint (MDE) to protect your Windows Server, you can safeguard your organization’s critical data, applications, and services from a wide…
Phishing is one of the biggest security threats facing organizations today. Phishing is an attack that involves tricking people into revealing sensitive information through fraudulent…
Recently, I was having a problem creating Defender for Office365 threat policies in new M365 tenants. Every time I tried to create an anti-spam policy,…
Microsoft Defender for Identity (short MDI, formerly Azure Advanced Threat Protection, also known as Azure ATP) is a cloud-based security solution that leverages your on-premises…
Microsoft Defender for Identity (short MDI, formerly Azure Advanced Threat Protection, also known as Azure ATP) is a security tool that helps protect businesses and…
Let’s audit your Microsoft Certification Authority with Microsoft Sentinel and be one step ahead of the attacker More and more services depend on certificates for…
Introduction With Microsoft Intune you can manage most of your endpoints like Windows 10/11, Android, iOS, macOS and the newest operating systems: Chrome and Linux…
I already made some posts how to implement and connect data sources to Microsoft Sentinel. The other side is that you have to pay per…
Microsoft released a new agent named Azure Monitoring Agent (AMA) to forward logs to Log Analytic workspace and is about to send the old Microsoft…