Microsoft 365 Security

Everything about Microsoft Security

M365 Advanced Hunting

How to hunt for LDAP reconnaissance within M365 Defender?

May 22, 2021 Leave a comment

Lightweight Directory Access Protocol (LDAP) is one of the core protocols used for directory services. The primary function of LDAP is to enable folks to

Start having visibility in service accounts with defender for identity

March 27, 2021 Leave a comment

How to deploy Sysmon and MMA Agent to receive logs in Azure Sentinel?

May 17, 2021 Leave a comment

I often get messages from folks who ask me questions around deploying Sysmon on their endpoints, and how to push those logs to an Azure

Incident Response Series: Reviewing data in Azure AD for investigation

March 16, 2021 Leave a comment

Incident Response Series: Collecting and analyzing logs in azure ad

March 8, 2021 One comment

M365 Advanced Hunting

How to hunt for LDAP reconnaissance within M365 Defender?

May 22, 2021 Leave a comment

Lightweight Directory Access Protocol (LDAP) is one of the core protocols used for directory services. The primary function of LDAP is to enable folks to

Start having visibility in service accounts with defender for identity

March 27, 2021 Leave a comment

Search for:

Buy Me A Coffee

POPULAR THIS WEEK

Start having visibility in service accounts with defender for identity
Using Microsoft Defender for Endpoint during investigation
How to hunt for LDAP reconnaissance within M365 Defender?
Exfiltrating data by transfering it to the cloud with Azcopy
Incident Response in a Microsoft cloud environment

Contact

Twitter
LinkedIn