PinnedProject Blackcat: A Penetration Testing Toolkit for Microsoft AzureToday, I’m excited to introduce project Blackcat — a modular, open-source PowerShell project that contains multiple scripts for pentesting…Mar 31Mar 31
Pinned1Password — Microsoft Sentinel solutionIntroductionMay 28, 2024A response icon1May 28, 2024A response icon1
Prologue: Meet Elena “Phantom” SterlingThe most dangerous attackers aren’t random hackers — they’re former insiders with personal vendettas. Meet Elena “Phantom” Sterling1d ago1d ago
Detecting EDR Bypass using path masqueradingIn this article I will provide a detailed KQL query to help identify suspicious behavior that may indicate a defense evasion as described…Feb 6Feb 6
Self-Service Membership for GitHub OrganizationsIn this article, we will walk through a solution to automate the process of adding new members to a GitHub organizationFeb 4Feb 4
Self-hosted password solution in AzureIn this article, I’m excited to introduce a project I’ve been working on to securely share secrets using only Azure resources.Jan 28Jan 28
Detecting ‘fasthttp’ bruteforce attacks on Entra IDIn this blog post, I will explain how to detect brute force attacks using Kusto Query Language (KQL) in Microsoft Defender. I will provide…Jan 15Jan 15
Calculating the First Monday of a Given Week in Kusto Query Language (KQL)Hey KQL heroes! 🌟 If you’ve ever had to wrestle with dates and weeks in your analysis, you’ll know it can be quite a challenge. But worry…Dec 30, 2024Dec 30, 2024
HowTo: GitHub Enterprise Pay-As-You-GoIn this blog post, I’ll guide you through setting up your GitHub Organization or GitHub Enterprise to be billed through your Azure…Sep 23, 2024Sep 23, 2024
