Skip to main content
Dylan Tenebruso

Attack the SOC

Defend, Detect, Respond: Exploring Azure Security and more..


Stack Your Deception: Stacking MDE Deception Rules with Thinkst Canarytokens
··1534 words·8 mins
Updated Changelog: corrected Path for custom lures A relatively new and straight forward feature pushed to client machines through Microsoft Defender for Endpoint as part of Defener XDR is the Deception capability.
Enhancing Your Entity Timelines: Sentinel Activities in the Unified Microsoft Defender XDR Portal
·1201 words·6 mins
With the recent release of the Microsoft unified security operations platform in the Defender portal which is the integration of Microsoft Sentinel and Microsoft Defender XDR, there has been A LOT to take in.