Recent Blog ArticlesNewest TopicsMost LikesTagged:TagUsing Cribl Stream to ingest logs into Microsoft Sentinel How to ingest syslog data into Sentinel using Cribl Stream Architecture Guidance: How to ingest GCP Firewall\VPC logs into Microsoft Sentinel Using log ingestion API to Pull firewall logs from GCP PubSub and ingest it into Sentine. l Architectural Guidance – Azure Monitor private links with Microsoft Sentinel Using private links on log analytics workspace while having Sentinel deployed on same workspace. How to deploy Attack Surface Reduction rules to Azure VMs using Azure Guest Configurations In this article, we will discuss a way to deploy ASR rules to VMs when other management tools are unavailable. Field Notes: Remediating Resources Using User-Assigned Managed Identity with Azure Policy In this article, we will be covering a common problem that is seen from the field when deploying certain Azure policies. Using gMSA account in Microsoft Defender for Identity in multi-domain forests. Recently I have been involved with multiple scenarios where Microsoft Defender for Identity is being provisioned successfully and a question arose around usage of gMSA accounts.