Personal blog and portfolio - Security, Cloud, and Technologyhttps://infernux.no/enhttps://infernux.no/blog/microsoftsentinel-usage-plan/https://infernux.no/blog/microsoftsentinel-usage-plan/The Usage table now exposes plan information, making it much easier to break down Microsoft Sentinel ingestion by Analytics, Basic, and Auxiliary with native KQL.Fri, 15 May 2026 00:00:00 GMTMicrosoft SentinelData and loggingLog Analyticshttps://infernux.no/blog/aadgraphactivitylogs/https://infernux.no/blog/aadgraphactivitylogs/Quick notes on the new AADGraphActivityLogs table, sample data generation with AADInternals and ROADtools, and some starter queries.Tue, 05 May 2026 00:00:00 GMTEntra IDMicrosoft SentinelData and loggingDetection EngineeringLog Analyticshttps://infernux.no/blog/guidetopresentingstuff/https://infernux.no/blog/guidetopresentingstuff/A semi-practical guide to how presenting better helps you learn, whether you're on stage, in a meeting, or just trying to explain a technical idea clearly.Thu, 30 Apr 2026 00:00:00 GMTPresentation SkillsConference SpeakingPublic Speakinghttps://infernux.no/blog/loghorizon-howtouse/https://infernux.no/blog/loghorizon-howtouse/A tutorial to using the Log Horizon tool to get an overview of your Microsoft Sentinel deployment, including logs, detection and Defender XDR integration.Thu, 16 Apr 2026 00:00:00 GMTMicrosoft SentinelPowerShellData and loggingCost OptimizationLog Horizonhttps://infernux.no/blog/loghorizon-update1/https://infernux.no/blog/loghorizon-update1/Log Horizon 0.5.0 adds self-contained HTML export, deeper transform analysis, stronger hardening, and improved CI-friendly reporting for Microsoft Sentinel.Thu, 09 Apr 2026 00:00:00 GMTMicrosoft SentinelPowerShellData and loggingCost OptimizationLog Horizonhttps://infernux.no/blog/buildingapracticallogbaseline/https://infernux.no/blog/buildingapracticallogbaseline/How to classify security logs into primary and secondary data, use Sentinel tiers pragmatically, and keep cost aligned with detection value.Mon, 06 Apr 2026 00:00:00 GMTMicrosoft SentinelData and loggingDetection EngineeringCost Optimizationhttps://infernux.no/blog/loghorizon-toolrelease/https://infernux.no/blog/loghorizon-toolrelease/A PowerShell module that connects to your Sentinel workspace and tells you if your logs are earning their keep.Wed, 01 Apr 2026 00:00:00 GMTMicrosoft SentinelPowerShellData and loggingCost OptimizationLog Horizonhttps://infernux.no/blog/sentinel-rsac-2026-takeaways/https://infernux.no/blog/sentinel-rsac-2026-takeaways/Diving into some of the recent RSAC announcementsMon, 30 Mar 2026 00:00:00 GMTMicrosoft SentinelData and loggingMCPDetection EngineeringCodeless Connector Frameworkhttps://infernux.no/blog/privileged-access-101/https://infernux.no/blog/privileged-access-101/My potentially 'realistic-ish' take on privileged access in Entra ID, Azure and Microsoft 365. Not perfect, not nothing, maybe just good enough to actually work.Sun, 29 Mar 2026 00:00:00 GMTEntra IDPrivileged AccessPIMConditional AccessAzure RBACMicrosoft 365https://infernux.no/blog/defenderxdr-cdrmodule/https://infernux.no/blog/defenderxdr-cdrmodule/A simple PowerShell module for managing custom detection rules via the Graph API, with SPN supportTue, 17 Feb 2026 00:00:00 GMTMicrosoft Defender XDRGraph APICustom Detection RulesPowerShellhttps://infernux.no/blog/rustymisp2sentinel/https://infernux.no/blog/rustymisp2sentinel/From idea to execution, the story of how I'm still trying to learn rust.Sat, 24 Jan 2026 00:00:00 GMTAnalytic RulesMicrosoft SentinelPowershellhttps://infernux.no/blog/makesomenoise/https://infernux.no/blog/makesomenoise/Most detection engineers already know this, but based on experience many companies will fail to consider noise in their detection strategy.Thu, 22 Jan 2026 00:00:00 GMTDetection EngineeringSecurity Monitoringhttps://infernux.no/blog/sinkvpn/https://infernux.no/blog/sinkvpn/Can we silence Defender for Endpoint using a rogue VPN-server?Sun, 18 Jan 2026 00:00:00 GMTSecurity MonitoringEDRPowershellDefender for Endpointhttps://infernux.no/blog/mispfilterbuilder/https://infernux.no/blog/mispfilterbuilder/A little weekend project to help build filters for MISP and misp2sentinelMon, 12 Jan 2026 00:00:00 GMTMISPMicrosoft SentinelThreat Intelligencehttps://infernux.no/blog/wowc2/https://infernux.no/blog/wowc2/Yes. Sort of, at least. Join me to explore how we can potentially use WoW and it's ecosystem as a C2Sat, 10 Jan 2026 00:00:00 GMTCyber SecurityC2https://infernux.no/blog/nocorrelation/https://infernux.no/blog/nocorrelation/Simple script that automates the job of excluding analytic rules from correlation in Defender XDR.Wed, 07 Jan 2026 00:00:00 GMTAnalytic RulesMicrosoft SentinelPowershellhttps://infernux.no/blog/migratingsentineltodefenderxdr/https://infernux.no/blog/migratingsentineltodefenderxdr/An in-depth look at why this change is happening and some things to expect from the migration.Sun, 04 Jan 2026 00:00:00 GMTCyber SecuritySecurity MonitoringMicrosoft SentinelMicrosoft Defender XDRUnified Experiencehttps://infernux.no/blog/toolrelease-darklighthouse/https://infernux.no/blog/toolrelease-darklighthouse/DarkLighthouse is a PowerShell module for discovering Azure Lighthouse delegations. Great for security assessments and understanding your multi-tenant attack surface.Thu, 01 Jan 2026 00:00:00 GMTCyber SecurityPowerShellAzureAzure LighthouseSecurity Assessmenthttps://infernux.no/blog/festivetechcalendar-detectionengineeringagent/https://infernux.no/blog/festivetechcalendar-detectionengineeringagent/My entry for this years Festive Tech Calendar 2025 is a little detection engineering assistantSun, 21 Dec 2025 00:00:00 GMTSIEMXDRCustom Detection RulesAnalytic RulesDetection EngineeringMicrosoft SentinelMicrosoft Defender XDRhttps://infernux.no/blog/lab-defenderforiot/https://infernux.no/blog/lab-defenderforiot/My first project on the new lab - setting up Defender for IoT on my IoT network to capture some traffic and see how it works.Thu, 04 Dec 2025 00:00:00 GMTLabDefender for IoTMicrosoft SentinelIoThttps://infernux.no/blog/lab-settingup/https://infernux.no/blog/lab-settingup/Getting started on my local lab. This post is mainly me troubleshooting Intel I225/226 network adapters.Sun, 30 Nov 2025 00:00:00 GMTLabHyper-Vhttps://infernux.no/blog/defenderforendpoint-customdatacollectionrules/https://infernux.no/blog/defenderforendpoint-customdatacollectionrules/Expand the logging capability of the DFE agent using custom rulesSat, 22 Nov 2025 00:00:00 GMTMicrosoft Defender XDRAdvanced HuntingDetection EngineeringData and logginghttps://infernux.no/blog/practicaldetectionengineering/https://infernux.no/blog/practicaldetectionengineering/A look at detection engineering from inception to completionTue, 11 Nov 2025 00:00:00 GMTMicrosoft Defender XDRAdvanced HuntingCustom Detection RulesAnalytic RulesDetection Engineeringhttps://infernux.no/blog/takeactiononadvancedhunting/https://infernux.no/blog/takeactiononadvancedhunting/The level below automation and above manual actions per assetFri, 22 Aug 2025 00:00:00 GMTMicrosoft Defender XDRAdvanced Huntinghttps://infernux.no/blog/microsoftsentinel-thelake/https://infernux.no/blog/microsoftsentinel-thelake/Answering some common questions people might haveTue, 29 Jul 2025 00:00:00 GMTMicrosoft SentinelMicrosoft Defender XDRGraph APIAzure LighthouseCustom Detection Ruleshttps://infernux.no/blog/microsoftsentinel-how-to-not-mess-it-up/https://infernux.no/blog/microsoftsentinel-how-to-not-mess-it-up/Looking beyond just the technical detailsSun, 20 Jul 2025 00:00:00 GMTMicrosoft SentinelMicrosoft Defender XDRGraph APIAzure LighthouseCustom Detection Ruleshttps://infernux.no/blog/defenderxdr-customdetectionrules/https://infernux.no/blog/defenderxdr-customdetectionrules/A little primer to pushing and pulling new content via the graph beta APISun, 01 Jun 2025 00:00:00 GMTMicrosoft Defender XDRGraph APICustom Detection Ruleshttps://infernux.no/blog/azurespringclean/https://infernux.no/blog/azurespringclean/A look into how we can utilize Maester to secure our Azure Tenant with a sprinkle of AI on topFri, 28 Feb 2025 00:00:00 GMTCyber SecurityEntra IDMaesterAzureMicrosoft 365https://infernux.no/blog/workspacetransformationrules/https://infernux.no/blog/workspacetransformationrules/This post will show you two very useful workspace transformation rules that you can use to save money on your data ingestion in Microsoft Sentinel.Mon, 24 Feb 2025 00:00:00 GMTCyber SecurityMicrosoft SentinelAzureLog AnalyticsWorkspace Transformation RulesData and logginghttps://infernux.no/blog/expanding-on-cti/https://infernux.no/blog/expanding-on-cti/Three levels of detection engineering using Threat Intelligence as our guiding lightSun, 26 Jan 2025 00:00:00 GMTCyber SecuritySecurity MonitoringThreat IntelligenceMISPDetection Engineeringhttps://infernux.no/blog/ti-detection/https://infernux.no/blog/ti-detection/If applied correctly, Threat Intelligence can be a useful tool in your belt. Mostly, however, it might be barking up the wrong tree depending on your maturity level. Let's explore that!Sun, 12 Jan 2025 00:00:00 GMTCyber SecuritySecurity MonitoringThreat IntelligenceMISPDetection Engineeringhttps://infernux.no/blog/toolrelease-pwshuploadindicatorsapi/https://infernux.no/blog/toolrelease-pwshuploadindicatorsapi/This module is a wrapper for the Microsoft Sentinel related Upload Indicators API, allowing you to upload indicators of compromise (IOC) to a Microsoft Sentinel instance.Fri, 27 Dec 2024 00:00:00 GMTCyber SecurityPowerShellThreat IntelligenceMISPMicrosoft SentinelUpload Indicators APIhttps://infernux.no/blog/toolrelease-pwshmisp/https://infernux.no/blog/toolrelease-pwshmisp/In an attempt to make using MISP easier, I have created a PowerShell module to interact with MISP. The release of this module is the first step towards creating a powershell integration function for pushing data from MISP to Microsoft Sentinel.Mon, 23 Dec 2024 00:00:00 GMTCyber SecurityPowerShellThreat IntelligenceMISPMicrosoft Sentinelhttps://infernux.no/blog/testyourself-pt2/https://infernux.no/blog/testyourself-pt2/Some tips, tricks and tools to help you get started testing your own infrastructure. This is the part 1 where we'll look into identity and how you can test it.Sat, 26 Oct 2024 00:00:00 GMTCyber SecurityEntra IDSecurity MonitoringAzureMicrosoft 365https://infernux.no/blog/entraid-generalhardening/https://infernux.no/blog/entraid-generalhardening/This is an update to a previous article I wrote on hardening Azure Active Directory. The idea of this update is to provide a table of default settings that I would change in any Entra ID-tenant I manage.Fri, 18 Oct 2024 00:00:00 GMTMicrosoft SentinelEntra IDHardeningData and loggingApp registrationEnterprise applicationsConsenthttps://infernux.no/blog/securitymonitoring-datasources/https://infernux.no/blog/securitymonitoring-datasources/One of the most misunderstood aspects of security monitoring is determining what data sources to use for what purpose. In this post, we will go through the process of determining what data sources to use for what purpose, where to prioritize developing use cases and how to plan for the future.Sun, 25 Aug 2024 00:00:00 GMTSecurity MonitoringData and loggingSIEMUse CasesMicrosoft Sentinelhttps://infernux.no/blog/securitymonitoringantipatterns/https://infernux.no/blog/securitymonitoringantipatterns/A little bit of a deconstruction of some antipatterns in Security OperationsMon, 19 Aug 2024 00:00:00 GMTCyber SecuritySecurity ArchitectureAntipatternsSecurity Monitoringhttps://infernux.no/blog/graphapipermissionsformanagedidentity/https://infernux.no/blog/graphapipermissionsformanagedidentity/Making a little note of this in Graph API so it's easy to find for using itFri, 16 Aug 2024 00:00:00 GMTNice to knowEntra IDAzureLogic AppManaged Identityhttps://infernux.no/blog/5yearsofsentinel/https://infernux.no/blog/5yearsofsentinel/Around 5 years ago, Microsoft announced the general availability of Azure Sentinel. This post aims to assess how far we along we have come - the good, the bad and the ugly.Tue, 09 Jul 2024 00:00:00 GMTCyber SecuritySecurity MonitoringMicrosoft SentinelMicrosoft Securityhttps://infernux.no/blog/testyourself/https://infernux.no/blog/testyourself/Some tips, tricks and tools to help you get started testing your own infrastructure. This is the start, where I'll just lay out some basic principles of security that we need to keep in mind moving forward.Fri, 21 Jun 2024 00:00:00 GMTCyber SecurityEntra IDSecurity MonitoringAzureMicrosoft 365https://infernux.no/blog/authenticatetoazuredevops/https://infernux.no/blog/authenticatetoazuredevops/How to add a managed identity to Azure DevOps and get access tokens for Azure DevopsWed, 17 Apr 2024 00:00:00 GMTEntra IDAzureManaged IdentityIdentity and Access ManagementCloud SecurityAzure DevOpshttps://infernux.no/blog/downloadazuredevopsrepo/https://infernux.no/blog/downloadazuredevopsrepo/Everything you need to know to download Azure DevOps repositories using a Managed Identity and REST APIWed, 17 Apr 2024 00:00:00 GMTNice to knowEntra IDAzureAzure DevOpsManaged Identityhttps://infernux.no/blog/toolsyoushouldknow-scubagear/https://infernux.no/blog/toolsyoushouldknow-scubagear/Developed by CISA, ScubaGear is an assessment tool that verifies a Microsoft 365 (M365) tenant’s configuration conforms to the policies described in the Secure Cloud Business Applications (SCuBA) Security Configuration Baseline documents.Sat, 09 Mar 2024 00:00:00 GMTCyber SecurityEntra IDSecurity MonitoringAzureMicrosoft 365ScubaGearhttps://infernux.no/blog/automatingsecuritymonitoringp2/https://infernux.no/blog/automatingsecuritymonitoringp2/A look at automating alerts and incident-handling.Sat, 03 Feb 2024 00:00:00 GMTMicrosoft SentinelAutomationSOARSecurity Monitoringhttps://infernux.no/blog/automatingsecuritymonitoring1/https://infernux.no/blog/automatingsecuritymonitoring1/A look at how to get started automating security monitoring (or just stuff in general).Wed, 31 Jan 2024 00:00:00 GMTMicrosoft SentinelAutomationSOARSecurity MonitoringData Engineeringhttps://infernux.no/blog/christmas-wrappers-part2/https://infernux.no/blog/christmas-wrappers-part2/How to create a wrapper script in PowershellMon, 15 Jan 2024 00:00:00 GMTPowerShellCyber SecurityMISPhttps://infernux.no/blog/christmas-wrappers/https://infernux.no/blog/christmas-wrappers/How to create a wrapper script in PowershellMon, 18 Dec 2023 00:00:00 GMTPowerShellCyber SecurityMISPhttps://infernux.no/blog/securitymonitoring-developingusecases/https://infernux.no/blog/securitymonitoring-developingusecases/Some thoughts on developing use cases and the importance of detection engineeringSun, 17 Sep 2023 00:00:00 GMTCyber SecuritySecurity MonitoringSIEMUse CasesMicrosoft Sentinelhttps://infernux.no/blog/misp2sentinel-eventfilters/https://infernux.no/blog/misp2sentinel-eventfilters/How they work, how to use them and some (hopefully not horrible) examples.Sat, 02 Sep 2023 00:00:00 GMTMISPThreat IntelligenceMicrosoft SentinelIOChttps://infernux.no/blog/microsoftsentinel-misp2sentinelupdate/https://infernux.no/blog/microsoftsentinel-misp2sentinelupdate/A quick intro on how to set up MISP, Azure Functions and Sentinel to push threat intelligence from MISP to SentinelThu, 03 Aug 2023 00:00:00 GMTCloud SecurityMicrosoft SentinelData and loggingAzure FunctionsAutomationMISPUpload Indicators APIhttps://infernux.no/blog/microsoftsentinel-pushtifrommisp/https://infernux.no/blog/microsoftsentinel-pushtifrommisp/A quick intro on how to set up MISP, Azure Functions and Sentinel to push threat intelligence from MISP to SentinelSun, 04 Jun 2023 00:00:00 GMTCloud SecurityMicrosoft SentinelData and loggingAzure FunctionsAutomationMISPhttps://infernux.no/blog/microsoftsentinel-azurefunctiondataconnectorstimeout/https://infernux.no/blog/microsoftsentinel-azurefunctiondataconnectorstimeout/Azure Functions are used for most data connectors, but some of them have a very low default timeout.Fri, 02 Jun 2023 00:00:00 GMTCloud SecurityMicrosoft SentinelData and loggingAzure FunctionsAutomationMISPhttps://infernux.no/blog/microsoftazure-removeorphanedidentities/https://infernux.no/blog/microsoftazure-removeorphanedidentities/Simple fix for removing any "identity not found" on resources in Microsoft Azure.Mon, 15 May 2023 00:00:00 GMTCloud SecurityAzureIAMhttps://infernux.no/blog/microsoftsentinel-workspacemanager/https://infernux.no/blog/microsoftsentinel-workspacemanager/Short introduction to the new preview, what it does and what I think of it currently.Mon, 24 Apr 2023 00:00:00 GMTCloud SecurityMicrosoft SentinelWorkspace ManagerMSSPhttps://infernux.no/blog/securitystrategy/https://infernux.no/blog/securitystrategy/Some thoughts and notes around implementing security features and what it is that we keep doing the wrong way.Sat, 04 Mar 2023 00:00:00 GMTCloud SecurityMicrosoft SentinelData and logginghttps://infernux.no/blog/azurelighthouse-designconsiderations/https://infernux.no/blog/azurelighthouse-designconsiderations/Considerations when creating an Azure Lighthouse managed service design.Tue, 10 Jan 2023 00:00:00 GMTAzureAzure LighthouseARM TemplatesManaged Serviceshttps://infernux.no/blog/microsoftsentinel-costestimation/https://infernux.no/blog/microsoftsentinel-costestimation/An introduction to methods for doing cost estimation in Microsoft Sentinel.Mon, 02 Jan 2023 00:00:00 GMTCloud SecurityMicrosoft SentinelData and logginghttps://infernux.no/blog/stealmyjob/https://infernux.no/blog/stealmyjob/I'm a Security Engineer (whatever that means) and maybe you want to be to? Hopefully this helps a little towards that.Fri, 02 Dec 2022 00:00:00 GMTCloud SecurityAzure DevOpsPowerShellMicrosoft SentinelAzureAWSGCPhttps://infernux.no/blog/azurelighthouse-msspaccess/https://infernux.no/blog/azurelighthouse-msspaccess/Some thoughts and considerations when designing an Azure Lighthouse access strategyTue, 08 Nov 2022 00:00:00 GMTCloud SecurityAzure LighthousePrivileged Identity ManagementPrivileged Access GroupsMSSPhttps://infernux.no/blog/azuredevops-webhooktriggersecurity/https://infernux.no/blog/azuredevops-webhooktriggersecurity/Quick introduction to starting pipelines with webhook triggers and (hopefully) making them secure-ishFri, 28 Oct 2022 00:00:00 GMTCloud SecurityAzure DevOpsWebhook triggersPipelineshttps://infernux.no/blog/microsoftsentinel-ipallowlist/https://infernux.no/blog/microsoftsentinel-ipallowlist/Quick introduction to IP allowlisting in Microsoft Sentinel and some thoughts around how to (not) implement it.Wed, 26 Oct 2022 00:00:00 GMTCloud SecurityMicrosoft SentinelPlaybookshttps://infernux.no/blog/defenderfordevops/https://infernux.no/blog/defenderfordevops/Quick introduction to Defender for DevOps and how to enable it in an Azure DevOps pipeline.Thu, 13 Oct 2022 00:00:00 GMTCloud SecurityDefender for CloudDefender for DevOpsAzure DevOpshttps://infernux.no/blog/microsoftsentinel-smartdatacollectionrules/https://infernux.no/blog/microsoftsentinel-smartdatacollectionrules/Data Collection Rules allows us to create custom filters based on XPath-queries. If we do this based on active Analytic Rules, we can create DCRs that only ingest the data we actually have detection for.Tue, 04 Oct 2022 00:00:00 GMTMicrosoft SentinelActive DirectoryAzure Monitor AgentAzure ArcData and loggingWindows Security EventsData Collection Ruleshttps://infernux.no/blog/azurelighthouse-101/https://infernux.no/blog/azurelighthouse-101/What is Azure Lighthouse, what does it do and how does it do it?Wed, 21 Sep 2022 00:00:00 GMTAzureAzure LighthouseARM TemplatesManaged Serviceshttps://infernux.no/blog/microsoftsentinel-templateanalyticrules/https://infernux.no/blog/microsoftsentinel-templateanalyticrules/Using the Microsoft Sentinel API and Powershell we can download all the components we want and template them for deployment - this allows you to create Analytic Rules in the Azure Portal and deploy them to multiple customers using CI/CD pipelines.Thu, 15 Sep 2022 00:00:00 GMTMicrosoft SentinelAzure DevOpsAnalytic RulesPowerShellMicrosoft Sentinel APIARM Templateshttps://infernux.no/blog/microsoftsentinel-addkeyvaultdataconnector/https://infernux.no/blog/microsoftsentinel-addkeyvaultdataconnector/A subset of Data Connector for Sentinel come in the form of Azure Functions deployed using an ARM-template. Most if not all of these functions avoid actually implementing a Key Vault to secure your variables, so here's the snippets to implement it yourself.Mon, 12 Sep 2022 00:00:00 GMTMicrosoft SentinelARM TemplatesAzure FunctionsData and loggingKey vaulthttps://infernux.no/blog/azureactivedirectory-generalhardening/https://infernux.no/blog/azureactivedirectory-generalhardening/Going over some attack paths for Azure Active Directory (that I know of) and how to harden your environment to avoid exploitation (or just minimize the risk slightly). The focus for this post is app registrations and basic enumeration.Sun, 11 Sep 2022 00:00:00 GMTMicrosoft SentinelAzure Active DirectoryHardeningData and loggingApp registrationEnterprise applicationsConsenthttps://infernux.no/blog/microsoftsentinel-laquerylogs/https://infernux.no/blog/microsoftsentinel-laquerylogs/Quick introduction to auditing Microsoft Sentinel queries in a cross-tenant scenario - and some things to be aware of.Thu, 25 Aug 2022 00:00:00 GMTMicrosoft SentinelAzure LighthouseLAQueryLogsAzureActivityAudithttps://infernux.no/blog/azurelighthouse-managedidentity/https://infernux.no/blog/azurelighthouse-managedidentity/Grant access via Azure Lighthouse using User Access Administrator delegation, ARM-templates, pipelines and powershell.Wed, 06 Jul 2022 00:00:00 GMTAzure REST APIMicrosoft SentinelAzure LighthouseARM TemplatesPowerShellManaged IdentityUser Access Administratorhttps://infernux.no/blog/azurelighthouse-usermanagedidentity/https://infernux.no/blog/azurelighthouse-usermanagedidentity/Create Managed Identites and grant access via Azure Lighthouse using User Access Administrator delegation.Tue, 07 Jun 2022 00:00:00 GMTAzure REST APIMicrosoft SentinelAzure LighthouseARM TemplatesPowerShellManaged IdentityUser Access Administratorhttps://infernux.no/blog/microsoftsentinel-automationrules/https://infernux.no/blog/microsoftsentinel-automationrules/Automate more of your Azure Sentinel deployment by combining the Az Powershell-module and the 2019-01-01-preview API to deploy Automation Rules from JSON-templates.Mon, 23 Aug 2021 00:00:00 GMTAzure REST APIMicrosoft SentinelSecurityInsightsAutomation RulesPowerShellhttps://infernux.no/blog/practicalhacking/https://infernux.no/blog/practicalhacking/Practical guidance for getting started with ethical hacking and Hack The Box for hands-on skill development.Tue, 04 May 2021 00:00:00 GMTHackingHackTheBoxhttps://infernux.no/blog/securingwindowsserver/https://infernux.no/blog/securingwindowsserver/A summary of the most important aspects from the 70-744 examTue, 04 May 2021 00:00:00 GMTWindowshttps://infernux.no/blog/automation-buildingafunction/https://infernux.no/blog/automation-buildingafunction/Learn PowerShell function structure, error handling patterns, and practical techniques for writing reusable automation scripts.Thu, 13 Jun 2019 00:00:00 GMTPowerShellhttps://infernux.no/blog/automation-errorhandling/https://infernux.no/blog/automation-errorhandling/Master PowerShell error handling with try, catch, and finally blocks to build more resilient automation.Thu, 21 Mar 2019 00:00:00 GMTPowerShellhttps://infernux.no/blog/securingwindowsserver32/https://infernux.no/blog/securingwindowsserver32/Securing Windows Server - Chapter 3, Part 2Wed, 13 Mar 2019 00:00:00 GMTPowerShellCyber SecurityWindowsInfrastructureNetworkingWindows Defender FirewallSoftware Defined Networkinghttps://infernux.no/blog/securingwindowsserver31/https://infernux.no/blog/securingwindowsserver31/Securing Windows Server - Chapter 3, Part 1Fri, 22 Feb 2019 00:00:00 GMTPowerShellCyber SecurityWindowsInfrastructureNetworkingWindows Defender Firewallhttps://infernux.no/blog/securingwindowsserver22/https://infernux.no/blog/securingwindowsserver22/Securing Windows Server - Chapter 2, Part 2Wed, 09 Jan 2019 00:00:00 GMTPowerShellCyber SecurityWindowsHyper-Vhttps://infernux.no/blog/securingwindowsserver21/https://infernux.no/blog/securingwindowsserver21/Securing Windows Server - Chapter 2, Part 1Mon, 12 Nov 2018 00:00:00 GMTPowerShellCyber SecurityWindowsHyper-Vhttps://infernux.no/blog/securingwindowsserver13/https://infernux.no/blog/securingwindowsserver13/Securing Windows Server - Chapter 1, Part 3Thu, 01 Nov 2018 00:00:00 GMTPowerShellCyber SecurityWindowshttps://infernux.no/blog/securingwindowsserver12/https://infernux.no/blog/securingwindowsserver12/Securing Windows Server - Chapter 1, Part 2Sun, 28 Oct 2018 00:00:00 GMTPowerShellCyber SecurityWindowsWindows UpdateWSUShttps://infernux.no/blog/securingwindowsserver11/https://infernux.no/blog/securingwindowsserver11/Securing Windows Server - Chapter 1, Part 1Mon, 22 Oct 2018 00:00:00 GMTPowerShellCyber SecurityWindowshttps://infernux.no/blog/securingwindowsserver01/https://infernux.no/blog/securingwindowsserver01/Windows Server 70-744 script notes and practical hardening snippets focused on reusable exam prep workflows.Tue, 18 Sep 2018 00:00:00 GMTPowerShellCyber SecurityWindowshttps://infernux.no/blog/security-getnetworkcredential/https://infernux.no/blog/security-getnetworkcredential/Technical note on SecureString limitations and how GetNetworkCredential can expose credentials as cleartext in scripts.Thu, 03 May 2018 00:00:00 GMTPowerShellGetNetworkCredential