Microsoft 365 Security

Everything about Microsoft Security

M365 Advanced Hunting

Start having visibility in service accounts with defender for identity

March 27, 2021 Leave a comment

Defender for Identity is a cloud-based security solution that leverages On-Premises Active Directory signals to identify and detect threats. It monitors Domain Controllers by capturing

Why are Windows Defender AV logs so important and how to monitor them with Azure Sentinel?

July 5, 2021 Leave a comment

Today we are going to talk about our good old friend or better known as Windows Defender AV. Not to confuse with the EDR solution

How to deploy Sysmon and MMA Agent to receive logs in Azure Sentinel?

May 17, 2021 Leave a comment

Incident Response Series: Reviewing data in Azure AD for investigation

March 16, 2021 Leave a comment

Incident Response Series: Collecting and analyzing logs in azure ad

March 8, 2021 One comment

M365 Advanced Hunting

Start having visibility in service accounts with defender for identity

March 27, 2021 Leave a comment

Defender for Identity is a cloud-based security solution that leverages On-Premises Active Directory signals to identify and detect threats. It monitors Domain Controllers by capturing

Search for:

Buy Me A Coffee

POPULAR THIS WEEK

How to upgrade the CU level of an On-Premises Exchange server?
Hunting in On-Premises Exchange Server logs
How to roll out Microsoft LAPS via GPO and why you should do it?
Everything about Service Principals, Applications, and API Permissions
Using Microsoft Defender for Endpoint during investigation

Contact

Twitter
LinkedIn