October 11, 2022

Easy Way to Build KQL Query Templates for Azure Services

If you want KQL queries to monitor general Azure services, there’s actually a pretty easy, quick way to build them. This is not a hidden feature, […]
October 7, 2022

A picture is worth a thousand words – visualizing your data.

I am a very visual person. When looking at data I love to look at the trend of that data and see if it tells a […]
September 8, 2022

Deception in Microsoft Sentinel with Thinkst Canaries

Honeypots have been around for a long time in InfoSec. The idea is that you set up some kind of infrastructure – maybe a file server […]
September 6, 2022

Improving your security baseline with KQL

One of my favourite sayings is ‘don’t let perfect be the enemy of good’. I think in cyber security, we can all be guilty of striving […]
August 25, 2022

How to Get the KQL Query Created by the New 365 Defender Query Builder

Hopefully, you didn’t miss the latest news that the new KQL Query Builder for 365 Defender is in public preview. If you did miss it, check […]