December 3, 2025
Microsoft Sentinel has become a leading cloud SIEM/XDR/SOAR platform, but organizations often struggle to get full value from it. High-volume security telemetry can drive up Continue […]
- Filter by
- Categories
- Tags
- Authors
- Show all
- All
- Azure App Service
- Azure Architecture
- Azure Updates
- Command Line
- Community
- Microsoft Security
- Tech Community
- All
- .AI agent orchestration
- .NET
- .NET Core
- actions/checkout
- Active Directory
- adaptive cloud
- agc
- Agent ID
- Agentic
- Agentic AI
- AI
- AI + Machine Learning
- ai adoption
- ai agent
- AI agents
- AI Chat Behavior
- ai foundry
- ai gateway
- ai guidance
- ai search
- ai services
- AI-900
- AI-assisted coding
- AI-Powered Code Review
- AI-Powered Development
- AI-powered DevOps
- Akahu
- AKS
- AMA
- analytics
- api
- API Management
- API security
- apim
- APIs
- App
- App Attach MSIX
- App Attach setup
- app development
- app service
- Application Gateway
- application gateway for containers
- Application Insights
- Archive Storage
- arm
- Article
- Artificial Intelligence
- ASP.NET Core
- Assesement
- authentication
- Authoring Best Practices
- automate vm setup
- Automated Plan Validation
- automation
- AVD
- AVD beginner guide
- AVD Optimization
- avd step by step
- avd troubleshooting
- avnm
- AWS Cloud
- AZ-104
- AZ-900
- AzAPI
- Azure
- Azure 101
- Azure Adaptive Cloud
- azure advisor
- Azure AI
- azure ai content security
- Azure AI Custom Vision
- Azure AI Foundry
- Azure AI Fundamentals
- Azure AI Landing Zones
- Azure AI Language
- Azure AI Search
- Azure API Management
- Azure APIM
- Azure APIM policy configuration
- Azure Application Gateway
- azure application gateway for containers
- Azure Arch Overview
- Azure Automation
- Azure Backup
- Azure Bastion
- Azure Bicep
- Azure Blob Storage
- Azure Blob Storage scripts
- Azure Cache for Redis
- Azure Certification
- Azure CLI
- Azure Cloud
- Azure cloud automation
- Azure cloud desktop
- Azure confidential ledger
- Azure Container Apps
- Azure Container Registry
- Azure Container Storage
- azure copilot
- Azure Cosmos DB
- Azure Cost Management
- azure custom script
- Azure Custom Script Extension
- Azure Data Box
- Azure Data Explorer
- Azure Data Factory
- Azure Data Lake Storage
- Azure Database for MySQL
- Azure Database for PostgreSQL
- Azure Database Migration service
- Azure Databricks
- Azure DDos Protection
- Azure Dedicated HSM
- azure deployment stacks
- Azure Developers
- Azure DevOps
- Azure DevOps automation
- Azure Disk Storage
- Azure DNS
- Azure Essentials Show
- Azure ExpressRoute
- Azure Files
- Azure Files Cost
- Azure Files Premium
- Azure Firewall
- Azure Firewall Manager
- azure for beginners
- Azure Front Door
- Azure Functions
- Azure fundamentals
- Azure HDInsight on Azure Kubernetes Service (AKS)
- Azure Health
- azure host pool
- Azure Hybrid Benefit
- Azure Infrastructure
- Azure infrastructure automation
- Azure Kubernetes Fleet Manager
- Azure Kubernetes Service
- Azure Kubernetes Service (AKS)
- Azure Load Testing
- Azure Local
- Azure Log Analytics
- Azure Logic Apps
- Azure Machine Learning
- Azure Managed Instance for Apache Cassandra
- Azure Managed Lustre
- Azure Managed Redis
- Azure Migrate
- Azure Migration
- Azure Modular Datacenter
- Azure Monitor
- Azure Monitor Agent
- azure monitor alerts
- Azure NAT Gateway
- Azure NetApp Files
- Azure Network
- Azure Network Security
- Azure Networking
- azure point to site vpn
- Azure Policy
- Azure Portal
- Azure PowerShell
- azure powershell tutorial
- Azure Pricing
- Azure Private Link
- azure rdp
- azure rdp shortpath
- Azure Red Hat OpenShift
- Azure Resource Manager
- azure route server
- azure scripting
- Azure Security
- Azure Sentinel
- Azure Service Health
- Azure Site Recovery
- Azure Sphere
- Azure SQL
- Azure SQL Database
- Azure SQL Managed Instance
- Azure Storage
- Azure Storage Actions
- Azure Storage Essential Training
- Azure Storage Mover
- azure sysadmin
- azure training
- Azure Tutorial
- azure udp
- Azure Update Manager
- Azure Virtual Desktop
- Azure Virtual Desktop apps
- azure virtual machine
- Azure Virtual Network
- azure virtual network manager
- Azure Virtual WAN
- Azure VM
- Azure VM automation PowerShell
- azure vm deployment
- Azure VM Image Builder
- Azure VM management
- Azure VM PowerShell script
- Azure VM Setup
- Azure VMware Solution
- Azure VPN
- Azure VPN Gateway
- azure vpn setup
- azure vpn tutorial
- azure-ad-b2c
- azure-arc
- azure-b2c
- azuredevops
- azureopenai
- azureverifiedmodules
- Baseline Security Mode
- basic vpn gateway
- Batch
- beeceptor
- bginfo
- bgp
- Bicep
- bicep resources
- bicep-local-deploy
- biceplang
- bike-shedding
- Branch checkout
- branding
- Business
- C#
- career
- career-growth
- careers
- CCF
- Center of Exellence
- Certification
- Chaos Engineering
- Charbel Nemnom MCT
- Chatmode
- chocolatey azure
- CI/CD
- CI/CD automation
- CI/CD Pipeline
- Claude Code
- claude-ai
- Cloud
- Cloud & AI Platforms
- Cloud Accelerate Factory
- Cloud automation
- cloud automation azure
- Cloud Computing Explained
- Cloud development platforms
- Cloud Fundamentals
- Cloud Migration
- cloud networking
- cloud ngfw
- Cloud PC
- cloud routing
- cloud security
- Cloud Services
- Cloud Skills
- Cloud Storage
- cloud vpn
- cloud-computing
- CloudFamily
- CloudPC
- Code review automation
- codegeneration
- Codeless Connector Framework
- codereview
- codex
- coding
- CoE
- Cognitive Services
- Command Line
- community
- Community Contributions
- Commvault
- Commvault Shift
- companies house
- Compliance
- Compliance Automation
- compute
- Computer Vision
- Conditional Access
- Conference
- conferences-and-events
- confidential computing
- Configuration Management
- container os
- containers
- Content Delivery Network
- content-creation
- Continuous deployment
- Continuous integration
- Contributor
- Convert EXE to MSIX
- Convert MSI to MSIX
- copilot
- Cost Management
- Create a sensitive information type purview
- Create MSIX package
- create sit in purview
- Cross-tenant authentication
- CSE
- csharp
- Custom Logs
- Custom logs via AMA
- custom script extension
- custom-auth-extension
- custom-policies
- Cyber Recovery
- Cybersecurity
- Daily Tracker
- Data Guardian
- data lake
- data migration
- Databases
- Databricks
- DataStream
- Dedicated
- Defender
- Defender for Cloud
- Defender For Endpoint
- deploy apps azure
- Developer Life
- Developer productivity
- Developer Tools
- developers
- Development
- devops
- DevOps automation
- digital sovereignty
- Digital Sovereignty Specialization
- Direct URL
- disable rdp multipath
- disaster recovery
- dns
- dns query logging
- dns security policy
- docker
- Documentation
- Documentation Standards.
- dotnet
- DotNetCore
- Easy MSIX tutorial
- ECMA2
- ECMA2Host
- EF Core
- email OTP
- EMEA
- Enable Microsoft Purview Insider Risk Analytics
- enable rdp multipath
- Endpoint security
- enterprise-architecture
- entra
- Entra Account Recovery
- Entra ID
- entra-external-id
- ephemeral
- Ephemeral Disk
- error-message
- Europe
- Event Grid
- Event Hubs
- Events
- Exam Prep
- Exchange Online
- exploring
- ExpressRoute
- Extensions
- external-id
- Features
- federated credentials
- FIM
- FIM2010R2
- fingerprint SIT Purview
- finops
- fleet manager
- flow logs
- foundry project
- Frontline
- FSLogix
- Future of coding
- Gallery
- Gartner Magic Quadrant
- GBB
- gcp
- Gen AI
- gen ai gateway
- genai
- Generative AI
- geometry
- Git
- GitHub
- GitHub Actions
- GitHub Advanced Security for Azure DevOps
- GitHub Agentic Workflows
- github copilot
- GitHub Enterprise
- GitHub Models
- GitHub repository management
- GitHub Spark
- GitHub Universe
- GitHub Workflows
- githubcopilot
- GitOps
- Global Black Belt
- Golang
- Google Cloud Platform
- gpt5
- granfeldt
- Hardening
- hashiconf
- HashiCorp
- HashiCorp Ambassador
- HashiCorp MCP Server
- hashtable
- How to deploy Azure Arc
- How to link work email account to Microsoft personal account
- how to link work email to microsoft learn profile step by step
- How to link your work or school account to your personal Microsoft Learn account (Step‑by‑Step)
- HTTP
- hub-and-spoke
- Hybrid
- Hybrid + Multicloud
- Hybrid Cloud
- Hyper-V
- I book Microsoft exam using my work account
- IaaS
- IaC
- IaC Best Practices
- identity
- Identity and access management
- Ignite
- immutable
- In development
- In preview
- influencers
- Infrastructure as a service
- Infrastructure As Code
- Infrastructure as Code (IaC)
- ingress
- Instructor
- Integration
- Intelligent automation
- Internet of Things
- Intune
- istio
- IT Infrastructure
- java
- jump box
- jwt
- Key Vault
- kubernetes
- Lab
- landing zone
- Landing Zones
- Launched
- learning
- lessons learned
- LinkedIn Learning
- linting
- LINUX
- Linux Virtual Machines
- List Keys
- LLM
- llm-agent
- Load Balancer
- Local
- Local AI Deployment
- local-deploy
- Log Analytics
- Log Analytics Workspace
- Logic Apps
- Logs Ingestion
- lokka
- M365
- Main
- manage multiple Azure VMs
- Management
- management agent
- Management and Governance
- Markdown
- Markdown Formatting
- mathematics
- MCP
- MCP Servers
- MCP Toolkit
- mcp-server
- MCT
- Media
- metrics
- mfa
- Microsoft
- Microsoft 365
- Microsoft 365 Local
- Microsoft Agent Framework
- microsoft ai
- Microsoft Azure
- Microsoft Azure Tutorial
- Microsoft Certification
- Microsoft Certified
- Microsoft Certified Trainer
- Microsoft Defender
- Microsoft Defender for Cloud
- Microsoft Defender XDR
- Microsoft DNS
- Microsoft Entra
- Microsoft Entra ID (formerly Azure AD)
- Microsoft Fabric
- Microsoft Foundry
- Microsoft Graph
- Microsoft Ignite
- Microsoft Ignite 2025
- Microsoft Intune
- Microsoft Learn
- Microsoft Partner
- Microsoft Playwright Testing
- Microsoft Purview
- Microsoft Purview enable device onboarding step by step
- Microsoft purview enable logs step by step
- Microsoft Purview Information Protection
- Microsoft Purview Insider Risk
- Microsoft Purview learning path
- Microsoft Purview Sensitive Info Type
- Microsoft Purview Sensitive Information Types explained
- Microsoft Purview SIT
- Microsoft Security
- Microsoft Sentinel
- Microsoft Sentinel Data Lake
- Microsoft Sovereign Cloud
- Microsoft Sovereign Private Cloud
- Microsoft Sovereign Public Cloud
- Microsoft SQL Server
- Microsoft Teams
- Microsoft Visual Studio
- Microsoft Writing Style Guide
- microsoftfoundry
- Migration
- MIM
- Minecraft
- MirtualMachine
- Mobile
- Model Context Protocol
- modernization
- MongoDB
- Monitoring
- Most Valuable Professional
- MSEvents
- MSIgnite2025
- MSIX
- MSIX certificate setup
- MSIX demo
- MSIX packaging explained
- MSIX Packaging Tool
- MSIX step by step
- MSIX tutorial for beginners
- Multi-tenant architecture
- mvp
- National Partner Cloud
- network
- network encryption
- Network security
- network security perimeter
- network security perimeters
- network virtual appliance
- Network Watcher
- networking
- new
- News
- nginx ingress
- NSP
- nsps
- Open Banking
- open source
- openai
- OpenAPI
- Operating System
- Opinion
- otp-sms
- otp-verification
- owasp
- PaaS
- Package apps for AVD
- palo alto
- Parameter
- parameters
- Partner Program
- Passwordless authentication
- passwords
- pattern
- Performance
- Personal Growth
- Pester
- platform as a service
- Platform Landing Zone
- Pluralsight
- Podcast
- Point-to-Site VPN
- policy
- powershell
- powershell azure
- PowerShell Azure tutorial
- PowerShell basics
- PowerShell for Beginners
- PowerShell Tutorial
- PowerShell Variable
- powertoys
- Preview
- Pricing
- Pricing & Offerings
- Pricing Calculator
- Private Endpoint
- private endpoints
- Process Improvement
- product-strategy
- Productivity
- Professional Growth
- programming
- prompt injection
- Prototyping
- provisioning
- pullrequest
- python
- rag
- Raspberry Pi
- rate limit
- rdp multipath
- rdp shortpath
- rdp udp multipath
- redis
- Regions & Datacenters
- remediation
- remote access
- Resource Health
- responsible-ai
- Retirements
- retrieval augmented generation
- routeserver
- routing
- run scripts on Azure VMs
- Runbook
- SaaS
- SC-200
- Schema
- Scripting
- sd-wan
- SDK and Tools
- sdn
- Secrets management
- Secure code checkout
- security
- Semantic Kernel
- Sentinel
- Sentinel data lake
- serverless
- service bus
- service endpoints
- Service Health
- service mesh
- Services
- Shared
- Shift Virtual
- sidecar mode
- SIEM
- sign-in
- sign-up
- signalr
- Simple MSIX guide
- site to site vpn
- smoke testing
- SOAR
- Software as a Service
- Software development workflow
- software-architecture
- software-design
- software-development
- software-engineering
- Sovereign Cloud
- Sovereign Landing Zones
- spectral
- splatting
- SQL Instance
- SQL Server
- SSO
- static code analysis
- static web apps
- step by step
- Step by step Sensitive Info Type creation
- storage
- Storage Account
- Storage Accounts
- strata cloud manager
- Stripe
- subnet peering
- Switzerland
- Tags
- tech
- Tech Learning
- Technical Writing
- Technology
- Terminal
- Terraform
- Terraform Cloud
- Terraform Modules
- Terraform Registry
- terraform-stacks
- terragrunt
- the benefits of linking work email to microsoft learn personal profile
- themes
- Thomas Maurer
- tls encryption
- Tooling
- Tools
- Traffic Manager
- Trainer
- troubleshooting
- tutorial
- Uncategorized
- unit-testing
- update Azure VMs with PowerShell
- updated
- Updates
- URL
- User-Defined Routing
- username
- validation
- Video
- virtual desktop
- Virtual Event
- virtual hub
- virtual machine
- Virtual Machine Scale Sets
- Virtual Machines
- virtual network
- virtual network flow logs
- virtual network gateways
- Virtual Network Peering
- Virtual WAN
- virtual wan routing
- Virtualization
- VirtualMetric
- VirtualMetric DataStream
- Visual Studio
- Visual Studio Code
- vm extensions azure
- VNet
- VNet Peering
- vpn
- VPN Gateway
- vscode
- vwan
- W365
- WAF
- Web
- web application firewall
- Webinar
- Well-Architected
- Well-Architected Framework
- What are SITS in Microsoft Purview
- what is a fingerprint based SIT in Purview
- What is Cloud Computing
- What is MSIX
- Windows
- Windows 10
- Windows 11
- Windows 365
- Windows 365 Frontline
- Windows 365 Link
- Windows App
- Windows app packaging
- windows powershell
- Windows Recovery Environment
- Windows Server
- windows server azure
- Windows Store
- Windows Terminal
- Windows Virtual Desktop
- Windows Virtual Machines
- Windows365
- windowsappsdk
- winget
- WinRE
- winui
- Workflow Automation
- Workflow Automation GitHub Actions GitHub Models Developer Productivity Tools
- Workflow orchestration
- Workflow YAML configuration
- Workload Identity Federation
- WSL
- XDR
- yaml
- Year In Review
- Zero Trust
- Zero Trust Architecture
- Zero Trust Networking Architecture
- All
- Adrian Hills
- Aidan Finn
- Alan Kinane
- Az Advertizer
- Azure Community Enthusiasts
- azurefeeds
- Charbel Nemnom
- Dan Rios
- Daniel Bradley
- Daniel McLoughlin
- Daniel Scott-Raynsford
- Darren Robinson
- Dieter Gobeyn
- George Ollis
- Gijs Reijn
- Gregor Suttie
- Imran Rashid
- Jake Walsh
- Jaliya Udagedara
- Jamie Maguire
- Jesse (JSON) Loudon
- Joe Carlyle
- John Kilmister
- John Lokerse
- John Savill
- Jose Moreno
- Josh King
- Leo Visser
- Luke Murray
- Maik van der Gaag
- Mark Tinderholt
- Matt Felton
- Nicholas Chang
- Nicola Delfino
- Olivier Miossec
- Peter De Tender
- Pixel Roberts
- Rory Braybrook
- Roy Kim
- Sam Cogan
- Sarah Lean
- Scott Hanselman
- Simon Waight
- Stanislav Zhelyazkov
- Sucheta Gawade
- Tao Yang
- Thomas Maurer
- Thomas Thornton
- Tobias Zimmergren
- Travis Roberts
- Vukašin Terzić
October 18, 2025
Published by Charbel Nemnom on October 18, 2025
Categories
Modern SIEM and platform solutions like Microsoft Sentinel can ingest logs from virtually any source, including custom text and JSON logs from network appliances and Continue […]
October 6, 2025
Published by Charbel Nemnom on October 6, 2025
Categories
Microsoft Sentinel’s integration with Microsoft Defender XDR has unlocked unified data management capabilities for SOC teams. In a previous post, we discussed and explored log Continue […]
August 16, 2025
Published by Charbel Nemnom on August 16, 2025
Categories
Microsoft Sentinel has evolved from a cloud-native SIEM into a modern security data lake platform that enables organizations to ingest, retain, and analyze massive volumes Continue […]