OpenCTI is an open‑source cyber threat intelligence platform designed to manage and visualise knowledge about cyber threats. This post...

I decided to begin by writing a series of blog posts, starting with "How to Build a Security Operations Centre (SOC)." It has been a...

Hey all, I've been unable to write anything in a while as I've moved from little New Zealand to Australia. I havent been able to post...

Introduction With the rapid advancement of AI products, Microsoft Security Copilot is changing the game in cybersecurity. Harnessing the...

Earlier this week Microsoft announced the new Exposure Management capability within Microsoft Defender. This new tool will enable...

I thought id write something up for anyone wanting to setup Microsoft Sentinel for the first time, but are unsure how. Below are the...

Something I thought id share with the wider community as more then likely most people wont be aware of this, or will have a different...

I thought I'd write some tips, tricks, and notes on how to build out an effective parser for your Sentinel Workspace. There are a heap of...

I thought I would share some details of how to get into the Microsoft Private Preview Community, for the sake of sharing new ideas,...

I thought I'd jot down something for this as I don't believe most know how powerful global administrator really is in Microsoft Azure....

I thought I'd create a guide for ingesting multiple tenants' security information from the same platform. For example, if I have multiple...

A lot of organizations will have some sort of compliance they will usually have to monitor for across their cloud infrastructure. In this...

Released not long ago was a set of new Microsoft Defender for Endpoint Policies within Azure Policy called [Preview]: Deploy Microsoft...

What exactly is Microsoft Defender for Cloud? Well, it's your one-stop-shop for all Azure Platform and other platform-related security...

Well, I better post something here, having used Microsoft Defender for Endpoint heavily in the past 12 months; I feel I should share...

What's new and where do I get it? With the new Threat Intelligence API that came out back in May 2023 a slew of new connectors is making...

Microsoft has recently launched a new richer entity environment within Microsoft Sentinel. This is part of ongoing enhancements within...

Intro Hey all, I thought I'd create a new get-started series for newcomers and people wanting to know more about Microsoft Sentinel. In...

A feature that has been wanted for an extremely long time (in my opinion) is finally here. Something that gives alerting a step up when...