The Microsoft Security Insights Show

Home
Podcast
Notes
Chat
Blogs
Show Schedule
Show News
Archive
Leaderboard
About

Blogs

Using KQL in a Playbook for Sentinel
Fun with parsing JSON
  
Andrea Fisher
4
Modifying the Sentinel Costs workbook
Do you have more than one Sentinel Workspace?
  
Andrea Fisher
Is AI taking over the world?
Is it secret? Is it safe?
  
Andrea Fisher
 and 
Rod Trent
1
How are you protecting your local admin passwords?
Local admin passwords have long been the bane of an administrator’s life.
  
Andrea Fisher
DMARCy MARC and the funky bunch
Otherwise known as the benefits of DMARC in your environment
  
Andrea Fisher
3
Workbooks, Playbooks and Notebooks. Oh my!
I published this blog originally a few years ago but we still have newcomers joining us in the Sentinel world so though it was worth a repost.
  
Andrea Fisher
Logs, logs and more logs
I recently wrote a blog called What should I log in my SIEM? and someone recommended that I do a follow up on what Windows Event logs are helpful in…
  
Andrea Fisher
1
What should I log in my SIEM?
Assessing the value of data
  
Andrea Fisher
4
Don't tamper with my data!
As a follow up to our great podcast with Josh Bregman last week, @RodTrent suggested I write a blog about the Tamper Protection feature in Microsoft…
  
Andrea Fisher
ChatGPT error
New tools are always a learning experience
  
Andrea Fisher
1
Stop letting users increase your vulnerability – turn off user application consent
Application consent (sometimes called OAuth consent) is the process of a user granting authorization to an application to access protected resources on…
  
Andrea Fisher
Four things you can do to make your environment safer in less than five minutes
As the new year approaches, we often make resolutions in our personal life – things we can do to make our lives better.
  
Andrea Fisher
2
© 2024 Rod Trent
PrivacyTermsCollection notice
Start WritingGet the app
Substack is the home for great culture