Dylan🛡AttacktheSOC
@DylanInfosec
Dad ⚭ Husband 𒉭 Azure Security | DE&TH | IAM 🏕️🥾 Catch me outside 🏋️♂️CultoftheIron
Dit vind je misschien leuk
To the folks saying, "$25K? C'mon!". Really? With this economy and not knowing anything about this insider... Someone made a bet that 25K would get someone to move and they hit their mark. The further the waters of hardship flow, the more opportunities grow -Sun Tzu (probably)
Defender Vulnerability Management moves to Exposure management. If you miss something, here is a handy chart to find it in the new menu. #XDR
The XDR table support for Data Lake works beautifully. Data stays in Advanced Hunting for 30 days for analytics while you only pay for Data Lake ingestion and storage. No more transformation overhead and you keep GRC and the IR team happy.
Everywhere you look there's something new to learn about.. went to go play with dropping XDR tables into Data lake and saw this new little button: Create and use custom Microsoft Sentinel MCP tools - learn.microsoft.com/en-us/azure/se…
Master prompts in Microsoft Copilot Studio—reusable libraries, governance, and grounded responses for consistent AI. Ready to prompt? msft.it/6019tVt4z #MSIgnite2025 #msftadvocate #CopilotStudio #PromptEngineering
If you are currently learning Cybersecurity, remember this: every professional you admire was once a confused beginner who chose not to give up. Stay consistent. Keep showing up. Your breakthrough is on the way ❤️
The second point here always drove me crazy... completely and unashamedly vibe coded an extension in about 20 minutes to just attach a "Copy KQL" button to the XDR portal whenever a KQL preview appears: github.com/AttacktheSOC/s…
It's an interesting feature, but why why the hell does it: - show me analytics rules from data connectors which I dont have in use (there isnt even a filter) - wont let me copy the kql query (like just fix the css i would assume), i just wanna copy it to test it...
Just learned from a Microsoft AE, SOC Optimization came from customers who saw the ATT&CK map in Sentinel but wanted more guidance on what the TTP's meant in context. "I see this map, but which Attack types use which chains and how do I cover THAT!?".
Microsoft Defender now prevents threats on endpoints during an attack Predictive shielding in Defender not only responds instantly during an attack but also jumps ahead of attackers, predicting and preventing the next move before it happens with just-in-time hardening controls…
Custom data collection in Microsoft Defender for Endpoint was just announced in the November release notes. Documentation is already available learn.microsoft.com/en-us/defender… Predictive shielding sounds also very interesting... #MDE #XDR
Starting a True Detective S01 rewatch tonight, unless someone can name something just as good to start? Doubtful but open to suggestions
“Temp-“ Prefixed to rule created over a year ago
Folks in GCC-high tenants have developed a form of patience few people today could achieve.
United States Trends
- 1. Cloudflare 30.3K posts
- 2. #heatedrivalry 29.9K posts
- 3. Cowboys 74.3K posts
- 4. LeBron 114K posts
- 5. Happy Farmers 1,831 posts
- 6. Warner Bros 31K posts
- 7. Pickens 15.1K posts
- 8. Lions 93.7K posts
- 9. fnaf 2 28K posts
- 10. rUSD N/A
- 11. #PowerForce N/A
- 12. scott hunter 6,670 posts
- 13. Paramount 21.9K posts
- 14. Wizkid 180K posts
- 15. Shang Tsung 35.4K posts
- 16. Gibbs 21K posts
- 17. Jake Tapper 43.5K posts
- 18. Davido 99.9K posts
- 19. Scott and Kip 3,839 posts
- 20. Cary 46.7K posts
Something went wrong.
Something went wrong.