Azure Sentinel learn

KQL Framwork explained Microsoft Sentinel Webinar | KQL Framework for Microsoft Sentinel – Empowering You to Become KQL-Savvy Presenter(s): Innocent Wafula, Jeremy Tan, & Prateek […]

Read More

Azure function: make zip files

Information: The project I describe can be downloaded from Github: https://github.com/atiedemann/AzFunctions/tree/main/MakeZip Azure Logic APPs are a very comprehensive tool that provides an extremely large number […]

Read More

Azure Sentinel News

Automated Analytics Rule Tuning 02/11/2021 Fine-tuning threat detection rules in your SIEM can be a difficult, delicate, and continuous process of balancing between maximizing your […]

Read More

Azure Sentinel Basics Part 1

Microsoft Azure Sentinel ist eine skalierbare, native Cloud Lösung für Security Information & Event Management (SIEM) und die Sicherheitsorchestrierung mit automatisierter Reaktion (Security Orchestration Automated Response, SOAR) . Azure […]

Read More

Elevated Shell?

Sometimes you have to verify if your PowerShell session runs with elevated permissions. With this short code you can check it and inform the user […]

Read More

Working with big logfiles

When we want to work on big files with PowerShell, PowerShell goes slower and slower. In my last projects, I have to work on Windows […]

Read More

LastLogonTimestamp

Sometimes you have to identify the last logon of a user or computer object in Active Directory. With this little code, you can list all […]

Read More

Powershell New-Credential

Sometimes you need a credential object in scripts to run that script unattended. This article describes a way to create a credential object to use […]

Read More