Maarten GoetinWortellMicrosoft Threat Protection ‘Jupyter notebook’ #AdvancedHunting sampleTL;DR — I’ve created a Microsoft Threat Protection advanced hunting Jupyter notebook and shared it on my Github repository.Aug 28, 2020Aug 28, 2020
Maarten GoetinWortellDefender ATP & Linux: trusting Microsoft to protect your open-source workloadsLet’s dive in and have a look at Microsoft’s preview of endpoint protection for Linux.Feb 27, 2020Feb 27, 2020
Maarten GoetinWortellMicrosoft Threat Protection: going down the rabbit holeMicrosoft wrote a sample script to show the power of unified SecOps. But what does the script actually do? Let’s find out!Feb 24, 20202Feb 24, 20202
Maarten GoetinWortellHoneypot for CVE-2020–0618 aka SQL Reporting Services vulnerabilityWortell Enterprise Security just reelased a Honeypot for this CVE.Feb 20, 2020Feb 20, 2020
Maarten GoetinWortellDetecting CVE-2020–0601 and other attempts to exploit known vulnerabilities using Azure SentinelHere’s the rule that you can use in Azure Sentinel.Jan 16, 2020Jan 16, 2020
Maarten GoetMaarten Goet: speaker profileMaarten Goet, frequent speaker at conferences such as Microsoft Ignite. Microsoft MVP since ’07 and Microsoft RD since ‘15.Dec 9, 2019Dec 9, 2019
Maarten GoetinWortellAdvanced multistage attack detection — real machine learning for the real worldI got to meet with the Machine Learning team part of Microsoft’s Threat Intelligence Center, developing those models. Here’s what I…Dec 6, 2019Dec 6, 2019
Maarten GoetinWortellAzure Sentinel: designing access and authorizations that meet the enterprise needsUse the new Log Analytics access mode, custom rules and Azure AD PIM to lock down your Azure Sentinel environment.Oct 7, 2019Oct 7, 2019
Maarten GoetinWortellAzure Sentinel: automating your Use Cases with PowerShell and the #AzSentinel moduleSay hello to our open-source PowerShell module called AzSentinel.Sep 30, 2019Sep 30, 2019
Maarten GoetVisual Studio Code — the swiss army knife for threat hunting with Azure SentinelWith Visual Studio Code and Jupyter you get intellisense, debugging, a variable and data explorer, and live sharing!Sep 30, 20192Sep 30, 20192