Microsoft Defender for Storage in pills
Defender for Cloud is the Microsoft Cloud-Native Application Protection Platform (CNAPP) solution - the goal is to unify security and compliance analysis in ...
Posts by Year
2024
How to continuously import Threat Intelligence Indicators in Microsoft Sentinel
Microsoft Sentinel - our SIEM and SOAR Solution - has several methods to import your own threat intelligence data (BYOTI) or simply integrate the Microsoft D...
L100 KQL Learning
This article is about an introduction to KQL - Kusto Query Language - a read-only language used to query data in many Microsoft services such as Azure Data E...
DevSecOps with Microsoft Defender for DevOps
DevSecOps defined DevSecOps, which stands for development, security, and operations, is a framework that integrates security into all phases of the software ...
SOAR Capabilities with Microsoft Sentinel
Sentinel is the Microsoft SIEM (Security Information Event Management) and SOAR (Security Orchestration Automation and Response) solution. SIEM concerns ever...
Copilot for Security - script analysis integration
Copilot for Security is great: among the many capabilities it offers (KQL query in natural language, incident summary and reporting, Threat Hunting with Thre...
Defender for Cloud Apps - Cloud Discovery API
Microsoft Defender for Cloud Apps (MDA) is a CASB - Cloud Access Security Broker. The product analyzes user behavior towards cloud applications in order to i...
Custom Detection Rules in Defender XDR
Microsoft Defender XDR (formally known as Defender 365) is the set of products that Microsoft offers for Extended Detection and Response capability. Into thi...
What is Microsoft Security Copilot?
Security Copilot is the first generative AI security product that empowers SOC analysts to defend their organizations at machine speed and scale! To date ...
Backlog activities
This blog post for a backlog of past activities and those planned for the future. What is Microsoft Security Copilot? Custom detection rules in Defende...