Microsoft Defender XDR

Filter by
Categories
Tags
Authors
Show all

All
Azure App Service
Azure Architecture
Azure Updates
Command Line
Community
Microsoft Security
Tech Community

All
.AI agent orchestration
.NET
.NET Core
actions/checkout
Active Directory
adaptive cloud
Add tools to copilot instructions in copilot studio
Add tools to instructions copilot studio
agc
Agent ID
Agentic
Agentic AI
AI
AI + Machine Learning
ai adoption
ai agent
AI agents
ai foundry
ai gateway
ai guidance
ai search
ai services
AI-900
AI-assisted coding
AI-Powered Code Review
AI-Powered Development
AI-powered DevOps
Akahu
AKS
AMA
analytics
api
API Management
API security
apim
APIs
App
app development
app service
Application Gateway
application gateway for containers
Application Insights
architecture
Archive Storage
arm
Article
Artificial Intelligence
ASP.NET Core
aspnetcore
Assesement
authentication
automate vm setup
Automated Plan Validation
automation
Autonomous agent
AVD
AVD Optimization
avd step by step
avd troubleshooting
avnm
AWS Cloud
AZ-900
AzAPI
Azure
Azure 101
Azure Adaptive Cloud
azure advisor
Azure AI
azure ai content security
Azure AI Custom Vision
Azure AI Foundry
Azure AI Fundamentals
Azure AI Landing Zones
Azure AI Language
Azure AI Search
Azure API Management
Azure APIM
Azure APIM policy configuration
Azure Application Gateway
azure application gateway for containers
Azure Arch Overview
Azure Automation
Azure Backup
Azure Bastion
Azure Bicep
Azure Blob Storage
Azure Blob Storage scripts
Azure Cache for Redis
Azure Cloud
Azure cloud automation
Azure cloud desktop
Azure confidential ledger
Azure Container Apps
Azure Container Instances
Azure Container Registry
Azure Container Storage
azure copilot
Azure Cosmos DB
azure custom script
Azure Custom Script Extension
Azure Data Box
Azure Data Explorer
Azure Data Factory
Azure Data Lake Storage
Azure Database for MySQL
Azure Database for PostgreSQL
Azure Database Migration service
Azure Databricks
Azure DDos Protection
Azure Dedicated HSM
azure deployment stacks
Azure DevOps
Azure DevOps automation
Azure Disk Storage
Azure DNS
Azure Essentials Show
Azure ExpressRoute
Azure Files
Azure Files Cost
Azure Files Premium
Azure Firewall
Azure Firewall Manager
Azure Front Door
Azure Functions
Azure fundamentals
Azure Health
azure host pool
Azure Hybrid Benefit
Azure Infrastructure
Azure infrastructure automation
Azure Kubernetes Fleet Manager
Azure Kubernetes Service
Azure Kubernetes Service (AKS)
Azure Load Testing
Azure Local
Azure Log Analytics
Azure Logic Apps
Azure Machine Learning
Azure Managed Instance for Apache Cassandra
Azure Managed Lustre
Azure Managed Redis
Azure Migrate
Azure Migration
Azure Modular Datacenter
Azure Monitor
Azure Monitor Agent
Azure NAT Gateway
Azure NetApp Files
Azure Network
Azure Networking
Azure Policy
Azure Portal
Azure PowerShell
azure powershell tutorial
Azure Pricing
Azure Private Link
azure rdp
azure rdp shortpath
Azure Red Hat OpenShift
Azure Resource Manager
azure route server
azure scripting
Azure Security
Azure Sentinel
Azure Service Health
Azure Site Recovery
Azure Sphere
Azure SQL
Azure SQL Database
Azure SQL Managed Instance
Azure Storage
Azure Storage Actions
Azure Storage Essential Training
Azure Storage Mover
azure sysadmin
Azure Tutorial
azure udp
Azure Update Manager
Azure Virtual Desktop
azure virtual machine
azure virtual network manager
Azure Virtual WAN
Azure VM
Azure VM automation PowerShell
azure vm deployment
Azure VM Image Builder
Azure VM management
Azure VM PowerShell script
Azure VM Setup
Azure VMware Solution
azure-ad-b2c
azure-arc
azure-b2c
azure-signalr
azuredevops
azureopenai
azureverifiedmodules
backend-development
Baseline Security Mode
Batch
beeceptor
bginfo
bgp
Bicep
bicep resources
bicep-local-deploy
biceplang
Branch checkout
branding
build an autonomous agent in Copilot Studio step by step
Business
C#
career
career-growth
careers
CCF
Center of Exellence
Certification
Chaos Engineering
Charbel Nemnom MCT
chocolatey azure
CI/CD
CI/CD automation
CI/CD Pipeline
claude-ai
Cloud
Cloud & AI Platforms
Cloud Accelerate Factory
Cloud automation
cloud automation azure
Cloud Computing Explained
Cloud development platforms
Cloud Fundamentals
Cloud Migration
cloud networking
cloud ngfw
Cloud PC
cloud routing
cloud security
Cloud Services
Cloud Skills
Cloud Storage
cloud-computing
CloudFamily
CloudPC
Code review automation
codegeneration
Codeless Connector Framework
codereview
codex
coding
CoE
Cognitive Services
Command Line
community
Commvault
Commvault Shift
companies house
Compliance
Compliance Automation
compute
Computer Vision
Conference
conferences-and-events
confidential computing
Configuration Management
container os
containers
Content Delivery Network
content-creation
Continuous deployment
Continuous integration
copilot
Copilot studio autonomous agent step by step
copilot studio topics
copilot-studio
Cost Management
Create a Microsoft form
Create a sensitive information type purview
Create a trigger in Copilot Studio
create an agent trigger copilot studio
Create an autonomous agent in Copilot studio
Create copilot agent in copilot studio
Create Copilot autonomous agent
create sit in purview
Cross-tenant authentication
CSE
cshapr
csharp
Custom Logs
Custom logs via AMA
custom script extension
custom-auth-extension
custom-policies
Cyber Recovery
Cybersecurity
Daily Tracker
Data Guardian
data lake
data migration
Databases
DataStream
Dedicated
Defender
Defender for Cloud
Defender For Endpoint
deploy apps azure
Developer Life
Developer productivity
Developer Tools
developers
Development
devops
DevOps automation
digital sovereignty
Digital Sovereignty Specialization
Direct URL
disable rdp multipath
disaster recovery
dns
dns query logging
dns security policy
docker
Documentation
dotnet
DotNetCore
ECMA2
ECMA2Host
EF Core
email
email OTP
EMEA
emergency-preparedness
Enable Microsoft Purview Insider Risk Analytics
enable rdp multipath
Endpoint security
enterprise-architecture
entra
Entra Account Recovery
Entra ID
entra-external-id
Environments in Power Platform Production Sandbox Trial
ENvironments sandbox
ephemeral
Ephemeral Disk
Error: You are not authorized to use this connection. Please consider using a different connection
Europe
Event Grid
Events
Exam Prep
Exchange Online
exploring
export
ExpressRoute
Extensions
external-id
Features
federated credentials
FIDO2
FIM
FIM2010R2
fingerprint SIT Purview
finops
fleet manager
flow logs
fluent
foundry project
Frontline
FSLogix
Future of coding
Gallery
GBB
gcp
Gen AI
gen ai gateway
genai
Generative AI
geometry
Git
GitHub
GitHub Actions
GitHub Advanced Security for Azure DevOps
GitHub Agentic Workflows
github copilot
GitHub Enterprise
GitHub Models
GitHub repository management
GitHub Spark
GitHub Universe
github-repo
githubcopilot
GitOps
Global Black Belt
Golang
Google Cloud Platform
governance
gpt5
granfeldt
Hardening
hashiconf
HashiCorp
HashiCorp Ambassador
HashiCorp MCP Server
hashtable
How to create an environment in Power Platform
How to deploy Azure Arc
How to link work email account to Microsoft personal account
how to link work email to microsoft learn profile step by step
How to link your work or school account to your personal Microsoft Learn account (Step‑by‑Step)
HTTP
hub-and-spoke
Hybrid
Hybrid + Multicloud
Hybrid Cloud
Hyper-V
I book Microsoft exam using my work account
IaaS
IaC
IaC Best Practices
identity
Identity and access management
Ignite
immutable
import
In development
In preview
influencers
Infrastructure as a service
Infrastructure As Code
Infrastructure as Code (IaC)
infrastructureascode
ingress
Instructor
Integration
Intelligent automation
Internet of Things
Intune
istio
IT Infrastructure
java
jump box
jwt
KAITO
Key Vault
kubernetes
Lab
landing zone
Landing Zones
Launched
Leaflet
learning
lessons learned
Link
LinkedIn
LinkedIn Learning
LINUX
Linux Virtual Machines
List Keys
LLM
llm-agent
Load Balancer
Local
Local AI Deployment
local-deploy
Log Analytics
Log Analytics Workspace
Logic Apps
Logs Ingestion
lokka
M365
Main
manage multiple Azure VMs
Management
management agent
Management and Governance
Markdown
mathematics
MCP
MCP Servers
MCP Toolkit
mcp-server
MCT
Media
mfa
Microsoft
Microsoft 365
Microsoft 365 Local
Microsoft Agent Framework
microsoft ai
Microsoft Azure
Microsoft Azure Tutorial
Microsoft Certification
Microsoft Certified
Microsoft Certified Trainer
Microsoft Defender
Microsoft Defender for Cloud
Microsoft Defender XDR
Microsoft DNS
Microsoft Entra
Microsoft Entra ID (formerly Azure AD)
Microsoft Fabric
Microsoft Foundry
Microsoft Graph
Microsoft Ignite
Microsoft Ignite 2025
Microsoft Intune
Microsoft Partner
Microsoft Playwright Testing
Microsoft Purview
Microsoft Purview enable device onboarding step by step
Microsoft purview enable logs step by step
Microsoft Purview Information Protection
Microsoft Purview Insider Risk
Microsoft Purview learning path
Microsoft Purview Sensitive Info Type
Microsoft Purview Sensitive Information Types explained
Microsoft Purview SIT
Microsoft Security
Microsoft Sentinel
Microsoft Sentinel Data Lake
Microsoft Sovereign Cloud
Microsoft Sovereign Private Cloud
Microsoft Sovereign Public Cloud
Microsoft SQL Server
Microsoft Teams
Microsoft Visual Studio
microsoftfoundry
Migration
MIM
Minecraft
MirtualMachine
Mobile
Model Context Protocol
modernization
MongoDB
Monitoring
MSEvents
MSIgnite2025
Multi-tenant architecture
mvp
National Partner Cloud
network
network architecture
network encryption
Network security
network security perimeter
network security perimeters
network virtual appliance
Network Watcher
networking
new
News
nginx ingress
NSP
nsps
Open Banking
open source
open webui
open-api
openai
OpenAPI
Operating System
Opinion
otp-sms
otp-verification
owasp
PaaS
palo alto
Parameter
parameters
Partner Program
Passwordless authentication
pattern
Performance
Pester
platform as a service
Platform Landing Zone
Pluralsight
Podcast
policy
Power Platform environments explained
power-platform
powershell
powershell azure
PowerShell Azure tutorial
PowerShell basics
PowerShell for Beginners
PowerShell Tutorial
PowerShell Variable
powertoys
Preview
Pricing
Pricing & Offerings
Pricing Calculator
Private Endpoint
private endpoints
Process Improvement
product-strategy
production
Productivity
Professional Growth
programming
prompt injection
Prototyping
Proximity project
pullrequest
python
Queue Storage
rag
Raspberry Pi
rate limit
rdp multipath
rdp shortpath
rdp udp multipath
redis
Regions & Datacenters
remote access
REST API
Retirements
retrieval augmented generation
routeserver
routing
run scripts on Azure VMs
Runbook
SaaS
SC-200
Schema
Scripting
sd-wan
SDK and Tools
sdn
Secrets management
Secure code checkout
security
Semantic Kernel
Sentinel
Sentinel data lake
serverless
service bus
service endpoints
service mesh
Services
Shared
Shift Virtual
sidecar mode
SIEM
sign-in
sign-up
signalr
smoke testing
SOAR
Software as a Service
Software development workflow
software-architecture
software-design
software-development
software-engineering
software-testing
Sovereign Cloud
Sovereign Landing Zones
splatting
SQL Instance
SQL Server
SSO
static code analysis
static web apps
step by step
Step by step Sensitive Info Type creation
storage
Storage Account
Storage Accounts
strata cloud manager
Stripe
subnet peering
swagger
Switzerland
Table Storage
Tags
tech
Tech Learning
Technology
Terminal
Terraform
Terraform Cloud
Terraform Modules
Terraform Registry
terraform-stacks
terragrunt
the benefits of linking work email to microsoft learn personal profile
themes
Thomas Maurer
tls encryption
Tooling
Tools
topics
topics in copilot studio explained
Traffic Manager
Trainer
troubleshooting
tutorial
Uncategorized
update Azure VMs with PowerShell
updated
Updates
URL
username
validation
Video
virtual desktop
Virtual Event
virtual hub
virtual machine
Virtual Machine Scale Sets
Virtual Machines
virtual network
virtual network flow logs
virtual network gateways
Virtual WAN
virtual wan routing
Virtualization
VirtualMetric
VirtualMetric DataStream
Visual Studio
Visual Studio Code
vm extensions azure
VNet
VNet Peering
VPN Gateway
vscode
vue
vwan
W365
WAF
Web
web application firewall
Webinar
websocket
Well-Architected
Well-Architected Framework
what are copilot studio topics
What are SITS in Microsoft Purview
what is a fingerprint based SIT in Purview
What is a trigger in Copilot Studio?
What is Cloud Computing
Windows
Windows 10
Windows 11
Windows 365
Windows 365 Frontline
Windows 365 Link
Windows App
Windows Console
Windows Package Manager
windows powershell
Windows Recovery Environment
Windows Server
windows server azure
Windows Store
Windows Terminal
Windows Virtual Desktop
Windows Virtual Machines
Windows365
windowsappsdk
winget
WinRE
winui
Workflow Automation
Workflow Automation GitHub Actions GitHub Models Developer Productivity Tools
Workflow orchestration
Workflow YAML configuration
Workload Identity Federation
WSL
XDR
yaml
Year In Review
Yubikey
Zero Trust

October 18, 2025

Published by Charbel Nemnom on October 18, 2025

Ingest Custom Logs to Microsoft Sentinel: A Step-by-Step Guide

Modern SIEM and platform solutions like Microsoft Sentinel can ingest logs from virtually any source, including custom text and JSON logs from network appliances and Continue […]

October 6, 2025

Published by Charbel Nemnom on October 6, 2025

Effective Tips To Manage Microsoft Defender XDR Tables

Microsoft Sentinel’s integration with Microsoft Defender XDR has unlocked unified data management capabilities for SOC teams. In a previous post, we discussed and explored log Continue […]

September 1, 2025

Published by Charbel Nemnom on September 1, 2025

Solution – Fix Microsoft Sentinel Missing Incident Description

In early July 2025, Microsoft announced that Microsoft Sentinel in the Azure Portal will be deprecated as of July 1, 2026. From that date forward, Continue […]