Blogging 11
- Seeding a Sentinel PoC Workspace with Dummy Security Logs
- Defender for Cloud - Managing Recommendation Owners at Scale
- Under the Hood - The Ports and Protocols Behind MDE Device Discovery
- Capturing VM Traffic on Hyper-V External vSwitches with Port Mirroring
- Konnectivity Evolution - From Tunnels to VNet Integration
- Ingestion into Sentinel via Event Hub made simple
- How kubelet really knows what to do - The Tale of HTTP Watch
- Enhancing Edge Container Observability with Inspektor Gadget and Sentinel (PoC)
- Retrieve Azure VM Run Commands through Defender AH tables (PoC)
- VNet Flow Logs - Detection of Malicious Outbound Connections with DNS Mapping
- Detect suspicious DNS requests using Azure DNS Security Policy and Sentinel Summary Rules