Recent Blog ArticlesMost RecentMost LikesKQL Migrator powered by Microsoft Security Copilot Overview A couple of weeks ago, Hesham and Hiten attended an internal Global Blackbelt summit in Redmond. Unfortunately, we encountered bad weather due to a “Bomb Cyclone”. Consequently, many peopl...Identity forensics with Copilot for Security Identity Analyst Plugin Microsoft Copilot for Securityis a platform that brings together the power of AI and human expertise to help administrators and security teams respond to attacks faster and more effectively. Copilot ...Group-IB Threat Intelligence and Attribution Connector - Azure Sentinel Are you using Group-IB Threat Intelligence (TI&A) system and looking for a custom connector to integrate with Azure Sentinel and your SOC team can create custom analytics detection rules to automatic...Azure Sentinel All-In-One Accelerator Being a hands-on Cyber - Security person interested in piloting Azure Sentinel, we have your back with Azure Sentinel All-In-One Accelerator tospeed up the deployment and initial configuration tasks...Azure Defender for IoT Raw-Data and ICS MITRE ATT&CK Matrix Mapping via Azure Sentinel A series of major cyberattacks across industries served as a wake-up call that the traditional “air-gapped” model for OT cybersecurity had become outdated in the era of IT/OT convergence and initiati...Microsoft Cloud App Security (MCAS) Activity Log in Azure Sentinel TheMicrosoft Cloud App Security(MCAS) connector lets you stream alerts andCloud Discovery logsfrom MCAS into Azure Sentinel. This will enable you to gain visibility into your cloud apps, get soph...O365 & AAD Multi-Tenant Custom Connector - Azure Sentinel Global SOC team are looking to configure the out-of-box O365 and AAD data connectors to ingest logs from multiple separate tenants while Azure Sentinel can’t natively do that, we cover your back! ...Aggregating Insider Risk Management Information via Azure Sentinel Insider risk management is a compliance solution in Microsoft 365 that helps minimize internal risks by enabling you to detect, investigate, and act on malicious and inadvertent activities in your or...Understanding Microsoft Teams Data Schema in Azure Sentinel - Analyst / Researcher View In SIEM world it's important to understand and analyze the data that you want to ingest and not only tocollect and aggregate log data generated throughout the organization’s technology infrastructur...Secure your Calls- Monitoring Microsoft TEAMS CallRecords Activity Logs using Azure Sentinel Organizations operating remotely want to be productive but not to compromise with security & compliance, Azure Sentinel provides a way via connectors - data ingestion "API" to ingest Microsoft TEAMS ...
MicrosoftMicrosoftMicrosoftMicrosoft
