Archives
- 21 Jun Defender for Identity - 40+ New or Expanded Built-In Alerts You Might Have Missed
- 19 Jun Streaming Defender XDR into the Sentinel Data Lake - Event Hub and DCR, Made Reusable
- 19 Jun Stopping Prompt Injection at the Endpoint - Defender's AI Agent Runtime Protection
- 14 Apr Seeding a Sentinel PoC Workspace with Dummy Security Logs
- 13 Apr Defender for Cloud - Managing Recommendation Owners at Scale
- 10 Apr Under the Hood - The Ports and Protocols Behind MDE Device Discovery
- 16 Mar Capturing VM Traffic on Hyper-V External vSwitches with Port Mirroring
- 01 Aug Konnectivity Evolution - From Tunnels to VNet Integration
- 10 Jul Ingestion into Sentinel via Event Hub made simple
- 03 Jul How kubelet really knows what to do - The Tale of HTTP Watch
- 26 Jun Enhancing Edge Container Observability with Inspektor Gadget and Sentinel (PoC)
- 06 Jun Retrieve Azure VM Run Commands through Defender AH tables (PoC)
- 21 May VNet Flow Logs - Detection of Malicious Outbound Connections with DNS Mapping
- 25 Apr Detect suspicious DNS requests using Azure DNS Security Policy and Sentinel Summary Rules