Today, we explore creating custom Automation Rules in Microsoft Sentinel to help us auto-close low value incidents. Let’s look at how we can automatically close & impact incidents and make it all work using PowerShell!
Today, we expand on and explore rapid Microsoft Sentinel deployment using PowerShell. This model of repeatable, consistent, and fast deployments is a great way to help build our own skills up, and build a resilient and robust deployment method we can count on.
Join me for Part 2 of deploying Microsoft Sentinel so that we can test different scenarios with data connectors, analytics rules, hunting queries, and automations. Together, we are building a way to quickly deploy Sentinel to allow testing and validations outside production.
Join me in the latest walkthrough to quickly deploy Microsoft Sentinel so that we can test different scenarios with data connectors, analytics rules, hunting queries, and automations. This is an important idea – testing in non-production – that is often overlooked due to complexity of deployment. Come explore a great way to quickly deploy Sentinel to allow testing and validations outside production.
A common challenge that security teams face is simply not knowing where all the artifacts can be found during an investigation. Microsoft Defender tools are capable of collecting a lot of data, and that can create questions during investigations of where is all this data and how do I find it quickly? Join me for a tour of the basics of Defender data retention periods and where to find that data.
In this article we will explore how to find your current usage of network resources against your subscription limits in Azure. This is helpful to both track current usage and plan for future usage. There are three ways to view this data, each with some variance on results; so let’s dive right in and find out about pushing our limits!
Using PowerShell to deploy a JSON template via GitHub is our final stop on deployment of Microsoft Azure virtual machines. We’ve looked at 4 other ways to deploy a VM in Azure so far and today we look at…
Today we continue our deployment of Microsoft Azure virtual machines and start exploring JSON and ARM templates. There are a lot of ways to do deployment as we continue our look at the options. Let’s look at templates in JSON for creating VM infrastructure.