Microsoft Defender XDR

Filter by
Categories
Tags
Authors
Show all

All
Azure App Service
Azure Architecture
Azure Updates
Command Line
Community
Microsoft News
Microsoft Security
Tech Community

All
.NET
.NET Core
#ai-tools
2024
8000v
Active Directory Domain Services
adaptive cloud
Advancing reliability
Adversary-in-the-middle (AiTM)
Agentic AI
AI
AI + Machine Learning
ai assitant
ai studio
AIOps
AKS
alm
AMA
analytics
Analytics and Big Data
Android
Angular
Annual Shareholders Meeting
AOAI
API Management
apim
apiops
APIs
App Configuration
app service
App Services
Apple Business Manager
Application Gateway
architecture center
Artificial Intelligence
ASP.NET Core
ASUS NUC
Audio Notes
authentication
authenticator-apps
Auto Mode
automation
Automation Account
availability-zone
AVD
AVD Optimization
AVD Setup
AVD Storage Optimization
AVM
avnm
aws
AZ Files
AZ-900
AZCopy
Azure
Azure 101
Azure 2025 Update
Azure Action Groups
Azure Active Directory
Azure AD
Azure Adaptive Cloud
Azure Administration
Azure Admins
azure adoption
azure advisor
Azure AI
Azure AI Language
Azure AI Speech
azure ai studio
Azure ai-services
Azure Alerts
azure architecture
Azure Automanage
Azure Automation
Azure Backup
Azure Bastion
Azure Best Practices
Azure Bicep
Azure Billing Models
Azure Blob
Azure Blob Storage
Azure Built-In Security
Azure Cache for Redis
Azure Chaos Studio
Azure Cloud
Azure Cloud Computing
Azure Cloud Management
Azure Cloud Security
Azure Compute Fleet
Azure confidential ledger
Azure Container Apps
Azure Container Instances
Azure Container Registry
Azure Container Storage
azure copilot
Azure Cosmos DB
Azure Cost Management
Azure Dashboards
Azure Data Box
Azure Data Explorer
Azure Data Factory
Azure Data Lake Storage
Azure Database for MySQL
Azure Database for PostgreSQL
Azure Databricks
Azure Demo
Azure Deployment Environments
Azure DevOps
Azure DevOps Repository
Azure Disk Storage
Azure DNS
Azure Domain Services
Azure Dynamic Alerts
Azure Elastic SAN
Azure Enablement Show
azure essentials
Azure Essentials Show
Azure ExpressRoute
Azure File Share
Azure File Share Best Practices
Azure File Share Configuration
Azure File Share Explained
Azure File Share Metrics
Azure File Share Optimization
Azure File Share Performance
Azure File Shares
Azure File Storage
Azure File Storage Comparison
Azure File Storage Pricing
Azure Files
Azure Files Demo
Azure Firewall
Azure Firewall Manager
Azure Front Door
Azure Functions
Azure Functions Flex Comsumption
Azure Governance
Azure HDInsight on Azure Kubernetes Service (AKS)
Azure Health Data Services
Azure Image Builder
Azure Internet Access
Azure IoT Edge
Azure IP Addressing
Azure Key Vault
Azure Kubernetes Fleet Manager
Azure Kubernetes Service
Azure Kubernetes Service (AKS)
Azure Load Balancer
Azure Local
Azure Log Analytics
Azure Logic App
Azure Logic Apps
Azure Machine Learning
azure management
Azure Maps
Azure Marketplace
Azure Metrics
Azure MFA
Azure Migrate
Azure Monitor
Azure Monitor Agent
Azure NAT Gateway
Azure NAT Gateway Tutorial
Azure NetApp Files
Azure Network Security
Azure Networking
azure networking ai
Azure Networking Configuration
azure networking tutorial
Azure Open Source
azure openai
azure openai service
Azure Performance Monitoring
Azure Performance Optimization
Azure Policy
Azure Portal
Azure Portal Tutorial
Azure PowerShell
Azure Private Endpoint
Azure Private Link
Azure Private Link Service
Azure Private Networking
Azure Private Subnets
Azure Profile Management
Azure Red Hat OpenShift
Azure reservations
Azure Resource Graph
Azure Resource Group
Azure Resource Locks
Azure Resource Manager
azure route server
Azure Savings Plans
Azure Security
Azure Sentinel
Azure SignalR Service
Azure Site Recovery
Azure Sphere
Azure Spot Virtual Machines
Azure Spring Apps
Azure SQL
Azure SQL Database
Azure SQL DB
Azure SQL Edge
Azure SQL Managed Instance
Azure Stack
Azure Stack HCI
Azure Static Alerts
Azure Step-by-Step
Azure Storage
azure storage account
Azure Storage Account Setup
Azure Storage Actions
Azure Storage Alerts
Azure Storage Explorer
Azure Storage IOPS
Azure Storage Monitoring
Azure Storage Mover
Azure Storage Tutorial
Azure Stream Analytics
azure subnet
Azure Subnets
azure tips and tricks
azure training
Azure Troubleshooting
Azure Tutorial
azure tutorial for beginners
Azure Verified Modules
Azure Virtual Desktop
azure virtual machine
Azure Virtual Network
azure virtual network manager
Azure Virtual Networks
Azure Virtual WAN
Azure VM
Azure VM Internet Access
Azure VM Security
Azure VMware Solution
Azure VNets
Azure Web PubSub
Azure Workbooks
azure-ad-b2c
azure-arc
azure-b2c
azuredevops
AzureResourceManager
AzureTutorial
backup
Batch
BBS
bgp
Bicep
biceplang
bird
Blazor
Blizzard
blob
blob storage
Block Blob
blog
Book Review
Bot
branch
Branches
Budget
Bugs
Business
Business Intelligence
C#
certificates
Certification
Certifications
chargeback
Chatbots
ciam
CIFS
Citrix
Citrix Cloud
Cloud
Cloud Adoption Framework
Cloud Foundation
Cloud Infrastructure
Cloud Mechanix
Cloud Native
cloud networking
cloud security
Cloud Services
Cloud Skills
Cloud Storage
cloud-computing
CloudFamily
CloudSecurity
Cmd
CNAPP
code
codegeneration
Command Line
Common Internet File System
community
Compliance
compute
Conditional Access
Conference
Configuration
containers
Content Delivery Network
copilot
copilot ai
copilot azure
cordon
Cost
Cost Management
cost-optimization
Course
credential theft
crowstrike
csharp
csr
custom-attributes
custom-policies
Customer Spotlight
Cybersecurity
Daily Tracker
Databases
Default Outbound Access
Defender EASM
delete
deploy
deploy Entra DS
Developer Life
Developer Tools
developers
Development
devops
diagnostics
dns
Document Summarisation
domain join
dotnet
EASM
Edge
EF Core
EKS
Elastic Search
enterprise
Entity Behavior
entra
Entra domain join
Entra Domain Services
Entra DS
Entra DS AD DS
Entra ID
Entra ID Free
Entra ID licensing
Entra Reporting
Entra Suite
error
Event
Event Grid
event viewer
Events
Exam Prep
Exec posts
Experts Live
Experts Live Europe
exploring
ExpressRoute
expressroute gateway
expressroute local
expressroute traffic collector
external-id
external-identity
face-id-recognition
Features
federation
FIDO2
file shares
finops
Firewall
Firewall Policy
Flex Comsumption Deployment
flow
flow logs
for_each
free
FSLogix Best Practices
FSLogix Configuration
FSLogix File Share
FSLogix Performance
FSLogix Tips
FSLogix Troubleshooting
Function App
Function Calling
GA
Gartner Magic Quadrant
gateway subnet
gatewaysubnet
genai
General
Generative AI
Git
GitHub
GitHub Action
GitHub Actions
github copilot
GitHub Project
githubcopilot
gotchas
governance
Hardening
Hardware
HashiCorp
HashiCorp Ambassador
Healthcare
Home Office
HTTP
https
hub
hub-and-spoke
Hybird
Hybrid
Hybrid + Multicloud
Hybrid Cloud
Hyper-V
IaaS
IaC
icmp
identity
Identity and access management
In development
In preview
infrastructure
Infrastructure As Code
Integration
intel
Intel NUC
Internet of Things
Intune
Investor Relations
IoT
IP Addressing in Azure
ipfix
ipsec
IPv4
IT Networking
IT Professionals
IT Security
IT Training
Jabra
javascript
Jumpstart
just in time compute
jwt-token
Kerberos
kinde
KQL
KubeConfig
kubernetes
KubeTidy
Kusto
kusto query language
Lab Kit
Landing Zones
latency
Launched
learning
Legacy password hash
LINUX
Linux Server
Linux Virtual Machines
Linux VM
LLM
Load Balancer
load balancing
load testing
Lock Resources Azure
Log Analytics
Log Analytics Workspace
Log4j
Logic Apps
logicapps
Machine Learning and AI
macOS
Management
Management and Governance
Media
mfa
Micosoft Ignite 2024
Microsoft
Microsoft 365
microsoft ai
Microsoft Azure
Microsoft Azure Tutorial
Microsoft Certification
microsoft certifications
Microsoft Certified
Microsoft Cloud
Microsoft Cloud Storage
Microsoft Connect
Microsoft Copilot for Azure
Microsoft Defender
Microsoft Defender EASM
Microsoft Defender XDR
Microsoft Dev Box
microsoft docs
Microsoft Earnings Results
Microsoft Entra
Microsoft Entra ID
Microsoft Entra Suite
Microsoft Fabric
Microsoft Graph
Microsoft Graph PowerShell
Microsoft identity management
Microsoft Ignite
Microsoft Ignite 2024
Microsoft Intune
Microsoft Learn
Microsoft Learning
Microsoft licensing
Microsoft PIM
Microsoft Playwright Testing
Microsoft Purview
Microsoft Security
Microsoft Sentinel
Microsoft Sentinel Repositories
Microsoft Sentinel UEBA
Microsoft SQL Server
Microsoft. Azure AD DS
MicrosoftBuild
Midnight Blizzard (NOBELIUM)
Migration
Misc
MITRE ATT&CK
mixed reality
Mobile
Monitoring
MS-102
MS-102 Exam
msee
MSEvents
MSIgnite2024
multi-factor-authentication
multi-region
multicloud
multiregion
MVPBuzz
NAT Gateway
NAT in Azure
Native Functions
netflow
network
Network Address Translation
network observability
Network security
network security group
network security groups
network virtual appliance
network visibility
Network Watcher
networking
Networking Basics
new
NFS
NFS Azure
NFSPermissions
noisy
NSG
NTFS
NTFSPermissions
NTLM
nva
NVIDIA
Office
Open AI
open source
openai
OpenAI Assistant
Operating System
OperatingSystem
operations
optimize
OST
otp-verification
P1 vs P2
PaaS
Page Blob
passkey
Password Hash
Password Sync
Password Synchronization
path prepending
peering
Phi-3
PIM
pipelines
PKI
Plugins
postgresql
Power Apps
power automate
Power Automate Flow
power bi
power-platform
powerbi
powershell
powershell-script
Press Releases
Prevent Resource Deletion
Pricing & Offerings
Privacy
private dns
Private Endpoint Configuration
private endpoints
Private Link Service Tutorial
Private Subnets
Privileged Identity Management
Process Improvement
Product Review
Prompt Engineering
Prompty
Provisioned V1 vs V2
Provisioned V2 Azure
Proximity Placement Group
proxy
PST
Public Speaking
Public vs Private IP
python
Python Virtual Environment
Quick Post
ransomware
ransomware-as-a-service
Raspberry Pi
RDP
Recent News
Regions & Datacenters
remote desktop
Remote Rendering
Replication
Reporting
resolution
Resource Locking
responsible-ai
Retirements
Retro
route table
routed vpn
router
routeserver
routing
Sandstorm
SAS
SCDPM
SCOM
Script
SCVMM
sd-wan
SdkAndTools
security
Security strategies
self hosted agent
Semantic Kernel
Sentinel
Sentinel Repositories
Server
serverless
Services
session recording
setup
sflow
Share Access Signature
SIEM
site-to-site
Sleet
SLM
SMB
SMS
smtp-server
SOAR
SOC
Social Opinion
speaking
spoke
SQL Server
SQL Server on Azure Virtual Machines
SSH
Startups
State-sponsored threat actor
storage
Storage Access
Storage Account
storage explorer
Storage Message Block
Storage Metrics
storage setup
Storm
strongswan
subnet
Subnet Mask
Subnetting
Sysadmin
SysCtr
Syslog
System Center
System Center 2025
teams
tech tip
Technical
Technology
TechTips
Terraform
Terraform Tutorial
Text Analytics
Thomas Maurer
Threat Detection
tips
tips-and-tricks
Token theft
totp
traffic analytics
traffic visibility
Training
try function
tutorial
Ubuntu
udr
UEBA
Uncategorized
updated
Updates
URL
USB
USB Drive
USB media
User and Entity Behavior Analytics
user-attribute
user-defined route
VDI
VDI Solutions
verified-credential
verified-identity
Video
Virtual desktop infrastructure
virtual machine
Virtual Machine Scale Sets
Virtual Machines
virtual network
virtual network appliance
Virtual Network Gateway
Virtual Network Peering
Virtual Network Subnet
Virtual WAN
Virtualization
Visual Studio
Visual Studio Code
VNet
vnet flow logs
VNet Peering
vpn
VPN Gateway
vwan
walk through
walkthrough
Web
web application firewall
Windows
Windows 10
Windows AD
Windows Console
windows containers
Windows Firewall
Windows Security
Windows Server
Windows Server 2025
Windows Server Management
Windows Subsystem for Linux (WSL)
Windows Terminal
Windows Virtual Desktop
Windows Virtual Machines
Workbooks
XDR
yaml

November 21, 2024

Published by Charbel Nemnom on November 21, 2024

Effective Solution To Monitor Data Connectors in Microsoft Sentinel

Like all SIEM systems, the Microsoft Sentinel SIEM/XDR product relies heavily on the consistent flow of logs and data from relevant security sources. A typical Continue […]

September 19, 2024

Published by Charbel Nemnom on September 19, 2024

Enable Sentinel UEBA Activity Templates at Scale (In Bulk)

Once you have enabled Microsoft Sentinel UEBA (User and Entity Behavior Analytics) in your environment, you can customize the entity page and change the activities Continue […]

September 17, 2024

Published by Charbel Nemnom on September 17, 2024

MS-102 Exam Study Guide: Microsoft 365 Administrator Expert

Updated — 16/09/2024 — The exam guide below shows the changes to be implemented starting July 15, 2024. It has been updated to reflect the new objectives and exam Continue […]