Dylan🛡AttacktheSOC
@DylanInfosec
Dad ⚭ Husband 𒉭 Azure Security | DE&TH | IAM 🏕️🥾 Catch me outside 🏋️♂️CultoftheIron
Anda mungkin suka
To the folks saying, "$25K? C'mon!". Really? With this economy and not knowing anything about this insider... Someone made a bet that 25K would get someone to move and they hit their mark. The further the waters of hardship flow, the more opportunities grow -Sun Tzu (probably)
Defender Vulnerability Management moves to Exposure management. If you miss something, here is a handy chart to find it in the new menu. #XDR
The XDR table support for Data Lake works beautifully. Data stays in Advanced Hunting for 30 days for analytics while you only pay for Data Lake ingestion and storage. No more transformation overhead and you keep GRC and the IR team happy.
Everywhere you look there's something new to learn about.. went to go play with dropping XDR tables into Data lake and saw this new little button: Create and use custom Microsoft Sentinel MCP tools - learn.microsoft.com/en-us/azure/se…
Master prompts in Microsoft Copilot Studio—reusable libraries, governance, and grounded responses for consistent AI. Ready to prompt? msft.it/6019tVt4z #MSIgnite2025 #msftadvocate #CopilotStudio #PromptEngineering
If you are currently learning Cybersecurity, remember this: every professional you admire was once a confused beginner who chose not to give up. Stay consistent. Keep showing up. Your breakthrough is on the way ❤️
The second point here always drove me crazy... completely and unashamedly vibe coded an extension in about 20 minutes to just attach a "Copy KQL" button to the XDR portal whenever a KQL preview appears: github.com/AttacktheSOC/s…
It's an interesting feature, but why why the hell does it: - show me analytics rules from data connectors which I dont have in use (there isnt even a filter) - wont let me copy the kql query (like just fix the css i would assume), i just wanna copy it to test it...
Just learned from a Microsoft AE, SOC Optimization came from customers who saw the ATT&CK map in Sentinel but wanted more guidance on what the TTP's meant in context. "I see this map, but which Attack types use which chains and how do I cover THAT!?".
Microsoft Defender now prevents threats on endpoints during an attack Predictive shielding in Defender not only responds instantly during an attack but also jumps ahead of attackers, predicting and preventing the next move before it happens with just-in-time hardening controls…
Custom data collection in Microsoft Defender for Endpoint was just announced in the November release notes. Documentation is already available learn.microsoft.com/en-us/defender… Predictive shielding sounds also very interesting... #MDE #XDR
Starting a True Detective S01 rewatch tonight, unless someone can name something just as good to start? Doubtful but open to suggestions
“Temp-“ Prefixed to rule created over a year ago
Folks in GCC-high tenants have developed a form of patience few people today could achieve.
United States Tren
- 1. Good Friday 39.9K posts
- 2. Cloudflare 34K posts
- 3. Cowboys 74.9K posts
- 4. Happy Farmers 2,311 posts
- 5. #heatedrivalry 31.7K posts
- 6. Warner Bros 37K posts
- 7. Wizkid 188K posts
- 8. Jake Tapper 46.4K posts
- 9. Pickens 15.6K posts
- 10. Lions 94.9K posts
- 11. The Gong Show N/A
- 12. Paramount 22.6K posts
- 13. Shang Tsung 37.8K posts
- 14. fnaf 2 28.7K posts
- 15. Gibbs 21.4K posts
- 16. #PowerForce N/A
- 17. Davido 105K posts
- 18. scott hunter 7,307 posts
- 19. The EU 122K posts
- 20. Hiroyuki Tagawa 33.5K posts
Something went wrong.
Something went wrong.