Discover how Security Orchestration, Automation, and Response (SOAR) in Microsoft Sentinel can streamline your cybersecurity operations. This guide unpacks the core components of SOAR, illustrating…
All about M365, Azure and Security
Discover how Security Orchestration, Automation, and Response (SOAR) in Microsoft Sentinel can streamline your cybersecurity operations. This guide unpacks the core components of SOAR, illustrating…
Let’s audit your Microsoft Certification Authority with Microsoft Sentinel and be one step ahead of the attacker More and more services depend on certificates for…
Introduction With Microsoft Intune you can manage most of your endpoints like Windows 10/11, Android, iOS, macOS and the newest operating systems: Chrome and Linux…
I already made some posts how to implement and connect data sources to Microsoft Sentinel. The other side is that you have to pay per…
Microsoft released a new agent named Azure Monitoring Agent (AMA) to forward logs to Log Analytic workspace and is about to send the old Microsoft…
This post depends on our previous posts. You should read them first to work with the same environment: To understand what we configure, we have…
In my post about “First steps setting up Microsoft Sentinel” we prepared our Microsoft Sentinel environment to use it for different connectors. Now we want…
In this post we go through the basic setup of Microsoft Sentinel. The minimum requirement needed is to create a Log Analytic Workspace and connect…
Microsoft Sentinel is a SIEM and SOAR tool: Security information and event management (SIEM) Security orchestration, automation and response (SOAR) Long story short, you can…