Starship 8 falling apart over the ocean, Freeport, Grand Bahama @SpaceX #starship8

Deepseek is displaying a very human-like behavior today :)

Our latest diagram is covering the Microsoft Copilot for Security - any feedback is appreciated! . #copilotforsecurity @BlueVoyant

Segregation of access to logging data is a crucial topic that arises during Microsoft Sentinel architecture sessions. This blog post provides some of the common ways to implement it. @BlueVoyant #microsoftsentinel.

Microsoft Sentinel introduced a significant number of new features and improvements of existing ones since our last diagram update. This one page diagram attempts to cover the core components and the integration with log sources. #microsoftsentinel #siem

2 new Microsoft Sentinel alert rule templates published:. - Workspace deletion activity from an infected device.- TI map IP entity to Network Session Events (ASIM Network Session schema). #microsoftsentinel .@BlueVoyant.

6 new Microsoft Sentinel alert rule templates published:.#microsoftsentinel .@BlueVoyant

2 new Microsoft Sentinel alert rule templates published:.#microsoftsentinel .@BlueVoyant. Chia_Crypto_Mining IOC - June 2021.(Preview) TI map IP entity to DNS Events (ASIM DNS schema).

2 new Microsoft Sentinel alert rule templates published:.#microsoftsentinel .@BlueVoyant . Front Door Premium WAF - SQLi Detection.Front Door Premium WAF - XSS Detection.

6 new Microsoft Sentinel alert rule templates published:.#microsoftsentinel @bluevoyant

2 new Microsoft Sentinel alert rule templates published:.#microsoftsentinel @bluevoyant. Guest accounts added in AAD Groups other than the ones specified. Guest accounts changed user type from guest to members in AzureAD.

8 new Microsoft Sentinel alert rule templates published (471 in total):.#microsoftsentinel @bluevoyant

Right now we are looking for full time only. Must be US citizens though we could make some exceptions for some EU countries.

SIEM engineers wanted for Microsoft Sentinel and Azure cloud security journey. Good wages, work from home, flexible hours. Safe return (to previous job) doubtful. Honour, recognition and advancement in event of success. @BlueVoyant #MicrosoftSentinel.

Gotta love "Unusual Anomaly" :). Description: Anomaly Rules generate events in the Anomalies table. This scheduled rule tries to detect Anomalies that are not usual, they could be a type of Anomaly that has recently been activated, or an infrequent type.

New Microsoft Sentinel alert rule templates published:.#microsoftsentinel . AV detections related to Europium actors.Azure Diagnostic settings removed from a resource.Europium - Hash and IP IOCs - September 2022.Unusual Anomaly.Unusual identity creation using exchange powershell.

New Microsoft Sentinel alert rule templates published:.#microsoftsentinel @BlueVoyant

New Microsoft Sentinel alert rule template published:. AD FS Abnormal EKU object identifier attribute. Uses Security events from the AD FS Auditing provider to detect suspicious object identifiers as part event ID 501 (from the Enhanced Key Usage attributes). #microsoftsentinel.

New Microsoft Sentinel alert rule templates published:.#MicrosoftSentinel @BlueVoyant @ManagedSentinel

The bane of my existence.