AzureTracks

Strengthening Endpoint Security with Microsoft Defender for Endpoint

You will quickly discover that endpoints are the frontline of modern cyber defense — and the first targets for attackers. Laptops, desktops, servers, and mobile devices sit at the intersection of users, data, and the cloud, making them prime entry points for ransomware, credential theft, and lateral movement.

This article explains how Microsoft Defender for Endpoint (MDE) transforms endpoint security from a reactive antivirus solution into a proactive, intelligent, and automated threat protection platform. You will learn how to onboard devices, configure Attack Surface Reduction (ASR) rules and Network Protection, monitor alerts and incidents, and leverage Automated Investigation and Response (AIR) to stop attacks before they escalate.

Posted on March 19, 2026 6:30 am

Azure

Azure Updates – Number 132 – March 7, 2026

A summary update on Azure news that includes updates released from Microsoft Azure related to Azure, Architecture, Compute, Security Copilot and Sentinel topics. Save time digging around to find recent releases and changes.

Posted on March 7, 2026 10:32 am

Azure

Azure Updates – Number 131 – February 21, 2026

Posted on February 21, 2026 8:35 am

Azure

Azure Updates – Number 130 – February 7, 2026

Posted on February 7, 2026 6:55 am

Azure

Azure Updates – Number 129 – January 24, 2026

Posted on January 24, 2026 9:00 am

Automation

Azure Logic Apps: Automating Workflows for Security and Business Efficiency

Learn how to use Azure Logic Apps with Microsoft Sentinel to automate workflows, enhance security, and streamline business processes. Step-by-step guide with best practices from Microsoft Cloud Security Framework.
Automation is no longer optional—it’s essential for modern businesses and security operations. By combining Azure Logic Apps with Microsoft Sentinel, organizations can streamline incident response, strengthen compliance, and eliminate manual overhead. This guide walks you through building secure, scalable automation workflows aligned with the Microsoft Cloud Security Framework.

Posted on January 22, 2026 6:43 am

Entra ID

Advanced Threat Intelligence & Hunting with Microsoft Defender and Sentinel

Threat intelligence shouldn’t live in spreadsheets. It should live in your detections.

Microsoft Sentinel’s integration with Microsoft Defender Threat Intelligence enables security teams to move beyond reactive alerts and into intelligence-led threat hunting. By correlating high-fidelity Microsoft-curated indicators with real telemetry—endpoint, identity, and network data—you can surface adversary activity earlier and with higher confidence.

In this article, I walk through:

Enabling Defender TI in Sentinel

Understanding the indicator schema that actually matters

Production-ready KQL hunting patterns

Confidence- and expiration-aware detection logic

Deployable analytics rules ready for real SOCs

Threat intelligence gives you the map.
Sentinel gives you the flashlight.
Hunting is knowing where—and when—to look.

Posted on January 21, 2026 6:37 am

Azure

Using Microsoft Defender Threat Intelligence in Sentinel for Advanced Threat Detection

It’s a special Christmas AzureTracks article this year! Cyber threats don’t take holidays—but your SOC can with the right tools. Discover how Defender Threat Intelligence + Sentinel helps identify emerging and persistent threats with real-time IoCs and AI-powered analytics.
Will you find who ate Santa’s cookies and catch the Christmas culprit?

Posted on December 25, 2025 5:45 am

Azure

Azure Updates – Number 128 – December 13, 2025

Posted on December 13, 2025 9:51 am

Azure

Future-Ready SOCs: Microsoft Sentinel Data Lake Powers AI-Driven Security

As 2025 wraps up, Microsoft Sentinel takes center stage with a major innovation announced at Ignite: Sentinel Data Lake. This feature is designed to unify security signals, reduce SIEM costs, and enable AI-powered threat detection at scale. In this article, we’ll explore what Sentinel Data Lake means for SOC operations, why it matters, and how you can start leveraging it today.

Posted on December 11, 2025 7:00 am

Category: Sentinel