/posts/detect-suspicious-dns-requests/ 2025-06-27T07:53:53+00:00 /posts/detection-of-malicious-outbound-connections-with-dns-mapping/ 2025-06-05T11:51:21+00:00 /posts/retrieve-azure-vm-run-commands-via-defender-signals/ 2025-06-16T18:31:15+00:00 /posts/edge-container-observability-using-inspektor-gadget/ 2025-07-03T10:52:17+00:00 /posts/how-kubelet-uses-http-watch/ 2025-07-12T19:40:33+00:00 /posts/ingestion-into-sentinel-via-event-hub-made-simple/ 2025-07-18T12:32:02+00:00 /posts/konnectivity-evolution-from-tunnels-to-vnet-integration/ 2025-08-12T09:45:39+00:00 /posts/hyper-v-vm-port-mirroring-made-simple/ 2026-03-16T00:00:00+00:00 /categories/ 2026-03-16T14:43:17+00:00 /tags/ 2026-03-16T14:43:17+00:00 /archives/ 2026-03-16T14:43:17+00:00 /about/ 2026-03-16T14:43:17+00:00 / /tags/sentinel/ /tags/dns/ /tags/summary-rules/ /tags/detection/ /tags/threat-intel/ /tags/cti/ /tags/networking/ /tags/hunting/ /tags/vnet/ /tags/azure/ /tags/serverless/ /tags/flow-logs/ /tags/aks/ /tags/defender/ /tags/runcommands/ /tags/kubernetes/ /tags/k8s/ /tags/observability/ /tags/container/ /tags/azure-arc/ /tags/aks-edge/ /tags/monitoring/ /tags/edge/ /tags/ebpf/ /tags/inspektor-gadget/ /tags/containerlogv2/ /tags/basics/ /tags/kubelet/ /tags/kube-api/ /tags/event-hub/ /tags/sentinel/ /tags/dcr/ /tags/azure-monitor/ /tags/log-analytics/ /tags/ingestion/ /tags/data-collection/ /tags/konnectivity/ /tags/security/ /tags/admission-webhooks/ /tags/control-plane/ /tags/hyper-v/ /tags/port-mirroring/ /tags/span/ /tags/wireshark/ /tags/capture/ /categories/blogging/ /categories/tutorial/ /categories/poc/