Social media platforms like Twitter have become a valuable source of information for cybersecurity professionals. Many cybersecurity experts use Twitter to share information about the latest threats and potential IOC’s that could help identify and prevent attacks. However, manually collecting and analyzing this data can be time-consuming and challenging. To…

In recent years, artificial intelligence (AI) has become an integral part of the modern business landscape. Organizations around the world are using AI to automate routine tasks, generate insights from data, and create new products and services. OpenAI, one of the leading AI research organizations, has partnered with Microsoft Azure…

In my previous blog post, I explored the integration of ChatGPT with Microsoft Sentinel, cloud-native Security Information and Event Management (SIEM) platform that helps organizations detect and respond to threats in real-time. The goal of the integration was to speed up and simplify the incident handling process by leveraging the…

I have been using passwordless on my org account for a while. I’m focusing on password removal for Microsoft Account using the Microsoft Authentication app and a FIDO2 certified device. I won’t spend time to say why securing identity and access to services is more relevant than ever; thousands of…

What is a service principal? Any application registered with an Azure Active Directory tenant has: application object: globally unique istance of the app app or client ID: globally unique ID for your app service principal: identity object for a service There are three types of SP: application managed identity legacy From Microsoft docs: “The application…

How to get statistics, KPIs about DNS service leveraging Pi-Hole running on Raspberry Pi. In my previous article I reported how to onboard Raspberry PI on Azure Sentinel. Basically I decided to enable cloud data logging with Raspberry PI with reference to two main security related use cases. …

Cloud data logging with Raspberry PI The Raspberry Pi is a low cost, credit-card sized computer developed by the Raspberry Pi Foundation. Several generation of Raspberry Pis have been released. All models feature a Broadcom chip with an integrated ARM-compatible CPU. The Raspberry Pi foundation provides Raspbian, a Debian based…

How to automate threat hunting based on Threat Intelligence feeds using Azure Sentinel and MDATP This article is the 4th in my Microsoft security integrations serie. It started with a post about Microsoft Intelligence Security Graph and Security API, then I posted an article about Microsoft Defender ATP and MineMeld integration, closing with article about Azure Sentinel and MineMeld integration. Now I’d like to share…