December 2, 2024

Effective Approach To Collect Linux Logs to Microsoft Sentinel

Centralized logging is crucial for effectively managing Linux systems. Organizations can streamline their log management processes by using tools like Rsyslog/Syslog-ng and integrating with platforms Continue […]
October 25, 2024

Effective Approach To Collect Windows Firewall Events to Microsoft Sentinel

The built-in Windows Firewall is a great security feature for the Windows client and server operating systems. While not every organization actively uses Windows Firewall Continue […]
September 28, 2024

Integrating Defender EASM with Microsoft Sentinel Guide

Microsoft Defender External Attack Surface Management (EASM) provides organizations with a comprehensive view of their digital attack surfaces. It discovers known and unknown resources, from Continue […]
September 12, 2024

Deep Dive into Microsoft Sentinel UEBA (User and Entity Behavior Analytics)

Understanding how to effectively use Microsoft Sentinel User and Entity Behavior Analytics (UEBA) can enhance your organization’s security posture. Setting up and configuring UEBA within Continue […]