Just another day of IR, Threat-Hunting & Microsoft Security
Microsoft Defender for Identity Group recently released the Active Directory Certificate Service (ADCS) support and expanded its coverage with a new AD CS sensor!. Great milestone. Like other sensor types in Microsoft Defender for Identity,...
Generative AI and it’s Cybersecurity presents both opportunities and risks. You can’t read the news at the moment without seeing a story about AI, particularly Generative AI (GenAI), which generates text, images, and other stuff....
Ransomware attacks grow and cripple companies, cities, and businesses. Attackers are locking people out of their networks and demanding significant payment to get back in. The case is that many organizations still pay attackers in...
Cloud Service Principal is the key, abuse the hole, or the misconfiguration. While I’m investigating or attacking the cloud for many components on a daily basis. I find a lot of abuses. Some of them...
One of the key features of Microsoft Sentinel is the ability to ingest data from different sources, such as Azure services, Microsoft 365, third-party solutions, and custom connectors. Logs and Tables can store, query, and...
Many times people asked me about the differences between external attack surface management, vulnerability management, and penetration testing. Mostly “What will be the and the right approach to handling security tools alongside the behavior and...
Threat Hunting in the Cloud differs from Legacy Threat Hunting (on-premise). Change my Mind. This post, among many others in the “Cloud Threat Hunting” series, will take you into the Cloud Threat-Hutning and “little things”...
In today’s AI landscape, software security is of paramount importance. With the increasing complexity of applications and the constant evolution of cyber threats, developers and security professionals must remain vigilant to protect sensitive data and...
