December 18, 2022

Microsoft Sentinel this Week – Issue #92

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
December 13, 2022

New Sentinel Role: Playbook Operator

Announced as part of the recent public preview for running Playbooks against Entities, it’s worth highlighting a new role that has been created to help enable […]
December 10, 2022

Microsoft Sentinel this Week – Issue #91

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
December 9, 2022

Ingesting PickupStix Threat Intelligence into Microsoft Sentinel

Good, free Threat Intelligence is hard to find, particularly after Anomali “exited” their Limo Feeds earlier this year. The Anomali folks connected with me after the […]
December 3, 2022

Microsoft Sentinel this Week – Issue #90

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
December 1, 2022

Building Your Own Potential Malicious Events Heatmap for Microsoft Sentinel

With the new entry point actively rolling out to Microsoft Sentinel environments (see: There’s a New Microsoft Sentinel Entry Page in Town), some organizations are wishing […]
November 30, 2022

Building Microsoft Sentinel Incident Tasks Recipes

Today, we announced a new feature in public preview called Incident Tasks. Incident Tasks allow organizations to develop a recorded encyclopedia of methods they commonly use […]
November 29, 2022

There’s a New Microsoft Sentinel Entry Page in Town

A new entry page for Microsoft Sentinel is rolling out after a successful stint in the Private Preview program. The rollout is slow but is creeping […]
November 26, 2022

Microsoft Sentinel this Week – Issue #89

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
November 22, 2022

Creating an URL Detonation Demo for Microsoft Sentinel

URL Detonation is a valuable feature of Microsoft Sentinel that provides deeper insights that enable faster triage of alerts. URL detonation is built into Microsoft Sentinel […]
November 19, 2022

Microsoft Sentinel this Week – Issue #88

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]
November 12, 2022

Microsoft Sentinel this Week – Issue #87

========================= [Want to discuss this further? Hit me up on Twitter or LinkedIn] [Subscribe to the RSS feed for this blog] [Subscribe to the Weekly Microsoft […]