2024

• October 26, 2024 - Test Yourself Part 1: Identity
• October 18, 2024 - Hardening Entra ID
• August 25, 2024 - Security Monitoring - Threat Modeling and Data Sources
• August 19, 2024 - Security Monitoring Antipatterns
• August 16, 2024 - Adding Graph API permissions to Managed Identities
• July 9, 2024 - 5 Years On - The Microsoft Sentinel Experience
• June 21, 2024 - Test Yourself: The Prelude
• April 17, 2024 - Download Azure DevOps Repositories using a Managed Identity and REST API
• April 17, 2024 - Authenticate to Azure DevOps using Managed Identity and REST API
• March 9, 2024 - Tools You Should Know: ScubaGear
• February 3, 2024 - Automating Security Monitoring - Part 2: Automation
• January 31, 2024 - Automating Security Monitoring - Part 1: Data
• January 15, 2024 - Christmas Wrappers - Part 2

2023

• December 18, 2023 - Christmas Wrappers - Part 1
• November 12, 2023 - Share your work!
• September 17, 2023 - Security Monitoring - Developing Use Cases
• September 2, 2023 - Figuring out MISP2Sentinel Event Filters
• August 3, 2023 - Use Update Indicators API to push Threat Intelligence from MISP to Microsoft Sentinel
• June 4, 2023 - Pushing Threat Intelligence from MISP to Microsoft Sentinel
• June 2, 2023 - Increasing the default timeout of Azure Functions
• May 15, 2023 - Removing orphaned Azure resource assigments
• April 24, 2023 - Microsoft Sentinel Workspace Manager
• March 4, 2023 - Field notes on security strategy
• January 10, 2023 - Azure Lighthouse access design considerations
• January 2, 2023 - Cost estimation in Microsoft Sentinel

2022

• December 2, 2022 - I want you to steal my job
• November 8, 2022 - Design an MSSP access strategy for Microsoft Sentinel
• October 28, 2022 - Simple security in Azure DevOps pipelines
• October 26, 2022 - IP Allowlisting in Microsoft Sentinel Playbooks
• October 13, 2022 - Enable Defender for DevOps in Azure DevOps pipelines
• October 4, 2022 - Creating smart Data Collection Rules by parsing EventIDs from Analytic Rules
• September 21, 2022 - Azure Lighthouse 101
• September 15, 2022 - Templating Microsoft Sentinel Analytic Rules using Powershell and CI/CD pipelines
• September 12, 2022 - Adding a Key Vault to your Microsoft Sentinel Data Connector ARM-template
• September 11, 2022 - Hardening Azure Active Directory
• August 25, 2022 - Auditing Microsoft Sentinel queries in an Azure Lighthouse-environment
• July 6, 2022 - Assign roles to managed identities in Microsoft Sentinel playbooks using Azure Lighthouse
• June 7, 2022 - Create Managed Identity and assign roles using Azure Lighthouse

2021

• August 23, 2021 - Deploying Automation Rules via API
• May 4, 2021 - Securing Windows Server 2016 Exam Prep Guide (ish)
• May 4, 2021 - Practical Hacking

2019

• June 13, 2019 - Building a function
• March 21, 2019 - A quick intro to handlings errors with try and catch
• March 13, 2019 - Configure Windows Defender Firewall (part 2)
• February 22, 2019 - Configure Windows Defender Firewall
• January 9, 2019 - Implement shielded and encryption supported VMs

2018

• November 12, 2018 - Implement a Guarded Fabric solution
• November 1, 2018 - Protect credentials and create security baselines
• October 28, 2018 - Implement server patching, updating solutions and malware protection
• October 22, 2018 - Disk and file encryption
• September 18, 2018 - Securing Windows Server (70-744) scripts
• May 3, 2018 - Reading SecureString credentials as cleartext