security automation blog

infernux.no
  • Archive
  • Presentations
  • About me

Pushing Threat Intelligence from MISP to Microsoft Sentinel

A quick intro on how to set up MISP, Azure Functions and Sentinel to push threat intelligence from MISP to Sentinel

Posted on June 4, 2023

Background [Read More]
Tags: Cloud Security, Microsoft Sentinel, Data Connectors, Azure Functions, Automation, MISP

Increasing the default timeout of Azure Functions

Azure Functions are used for most data connectors, but some of them have a very low default timeout.

Posted on June 2, 2023

Background [Read More]
Tags: Cloud Security, Microsoft Sentinel, Data Connectors, Azure Functions, Automation, MISP

Removing orphaned Azure resource assigments

Simple fix for removing any "identity not found" on resources in Microsoft Azure.

Posted on May 15, 2023

Problem [Read More]
Tags: Cloud Security, Microsoft Azure, IAM

Microsoft Sentinel Workspace Manager

Short introduction to the new preview, what it does and what I think of it currently.

Posted on April 24, 2023

Introduction [Read More]
Tags: Cloud Security, Microsoft Sentinel, Workspace Manager, MSSP

Field notes on security strategy

Some thoughts and notes around implementing security features and what it is that we keep doing the wrong way.

Posted on March 4, 2023

A quick note on security mindset [Read More]
Tags: Cloud Security, Microsoft Sentinel, Data connectors, Log ingestion, Log strategy
  • ← Newer Posts
  • Older Posts →
  • Email me
  • RSS

infernuxmonster  •  2024  •  Infernux.no

Theme by beautiful-jekyll