Another day of Cybersecurity
Recently, there have been massive cyberattacks against cloud providers and on-premises environments, the most recent of which is the attack and exploitation of vulnerabilities against Exchange servers – TheĀ HAFNIUM. This post focus on Microsoft Sentinel and Sysmon 4 … Read the rest
Are your Intune local users configured as local admin? Do you’ve got additional admin users on Intune devices? In most cases, Intune users could be the Local administrators, and it’s a feature without any disruption, and this is by default.… Read the rest
Sentinel. Sentry a defender always on the guard who aims to protect and withstand threats, anticipate any attack, assume that it will arrive, and adjust the behavior accordingly. Be present to protect the assets and the area.
This blog post … Read the rest
What’s going on inside the box? Is the Service Principal monitoring is part of your security monitoring? If we rely on many security incidents, the Service Principle must be monitored. The following post will guide how to Monitor Service Principal … Read the rest
Okta breach learned is that any vendor can be breached sooner or later. No one is immune. Okta is one of the stable vendors that we know cuz the Okta history was pretty good. This blog post will take you … Read the rest
This blog-post it’s all about Hunting BitLocker with Microsoft Sentinel. Is the cloud is more secure than the on-prem environment? It depends on many situations. If you don’t know how to manage the security control on the cloud, you will … Read the rest
Managing comprehensive security products and controls can be complicated, requiring a specific skill set and control over the security process. In addition to managing complexity, monitoring the simulation activities, alerts, and results is reflected during the evaluation and testing.
The … Read the rest
The following post focuses on Okta brute force detection with Microsoft Sentinel and many tips for the investigation and day-2-day.
A hacker attempts to guess your usernames and passwords during a brute force attack. Hackers use tools to speed up … Read the rest
