Discover how Security Orchestration, Automation, and Response (SOAR) in Microsoft Sentinel can streamline your cybersecurity operations. This guide unpacks the core components of SOAR, illustrating…
All about M365, Azure and Security
Discover how Security Orchestration, Automation, and Response (SOAR) in Microsoft Sentinel can streamline your cybersecurity operations. This guide unpacks the core components of SOAR, illustrating…
By using Microsoft Defender for Endpoint (MDE) to protect your Windows Server, you can safeguard your organization’s critical data, applications, and services from a wide…
Let’s audit your Microsoft Certification Authority with Microsoft Sentinel and be one step ahead of the attacker More and more services depend on certificates for…
I already made some posts how to implement and connect data sources to Microsoft Sentinel. The other side is that you have to pay per…
Microsoft released a new agent named Azure Monitoring Agent (AMA) to forward logs to Log Analytic workspace and is about to send the old Microsoft…
This post depends on our previous posts. You should read them first to work with the same environment: To understand what we configure, we have…
In my post about “First steps setting up Microsoft Sentinel” we prepared our Microsoft Sentinel environment to use it for different connectors. Now we want…
In this post we go through the basic setup of Microsoft Sentinel. The minimum requirement needed is to create a Log Analytic Workspace and connect…
Microsoft Sentinel is a SIEM and SOAR tool: Security information and event management (SIEM) Security orchestration, automation and response (SOAR) Long story short, you can…
Now we are enabling the Windows Admin Center to manage our Arc enabled Windows servers. Inside Azure Arc select one server and choose “Windows Admin…