October 7, 2022

A picture is worth a thousand words – visualizing your data.

I am a very visual person. When looking at data I love to look at the trend of that data and see if it tells a […]
October 1, 2022

Microsoft Sentinel this Week – Issue #81

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
September 30, 2022

A Replacement for the Defunct Anomali Limo Feeds in Microsoft Sentinel

When I noted that the free Anomali Limo feeds that everyone was using for TI in Microsoft Sentinel were going to be sun-setted there was woe […]
September 29, 2022

Security Sessions for Microsoft Ignite 2022

Whether you’re attending in-person or virtually, there’s plenty to enjoy about Microsoft Ignite this year. Unfortunately, I won’t be onsite this year, but I will still […]
September 23, 2022

Microsoft Sentinel this Week – Issue #80

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
September 22, 2022

Microsoft Sentinel Automation Rules Get Advanced Conditions

A new feature in Preview has just rolled out into customers’ Microsoft Sentinel environments that has become one of the more popular asks and more evidence […]
September 17, 2022

Microsoft Sentinel this Week – Issue #79

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
September 14, 2022

Microsoft Sentinel this Week – Issue #78

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
September 8, 2022

Deception in Microsoft Sentinel with Thinkst Canaries

Honeypots have been around for a long time in InfoSec. The idea is that you set up some kind of infrastructure – maybe a file server […]
September 6, 2022

Improving your security baseline with KQL

One of my favourite sayings is ‘don’t let perfect be the enemy of good’. I think in cyber security, we can all be guilty of striving […]
September 2, 2022

Microsoft Sentinel this Week – Issue #77

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
August 26, 2022

Microsoft Sentinel this Week – Issue #76

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]