New blog post live for my Sentinel Saturday series!   
Read the blog 👉 https://marshsecurity.org/sentinel-saturday-using-tasks-with-automation/

In this post, I explore the power of using Microsoft Sentinel Tasks as part of your automation workflows.

Most teams aren’t getting the full #value out of Tasks in Microsoft Sentinel. Are you? When you combine Sentinel Tasks with automation, they become a game-changer.

- Auto-create tasks when automation fails (so nothing slips through the cracks)
- Auto-complete tasks when automation succeeds
- Use tasks to verify automation outcomes
- Build engineering feedback loops and automation #QA

Read the blog 👉 https://marshsecurity.org/sentinel-saturday-using-tasks-with-automation/

#MicrosoftSentinel #SentinelAutomation #CyberSecurity #SOCAutomation
#CloudSecurity #AzureSecurity #SIEM #SecOps #Automation #InfoSec
#CyberSecurityCommunity #BlueTeam #ThreatDetection #SecurityEngineering #SecurityOperations

🕵️‍♂️ KQL is both a science and an art.

If you’ve ever felt your Sentinel queries were running slow or costing more than they should, you’re not alone.
This week’s #SentinelSaturdays covers how to write leaner, faster, more efficient KQL queries with practical examples you can use today.

🔗 Read the full walkthrough here: https://marshsecurity.org/sentinel-skills-saturday-edition-one/

Share your comments 👇
What’s YOUR top KQL tip or favourite optimisation trick?

Let’s build a thread of practical advice for the hunting community.
#MicrosoftSentinel #KQL #ThreatHunting #SecurityOperations

🚀 Introducing... Microsoft Docs Tracker!

If you're anything like me, it can often be difficult to keep up-to-date with the constant changes of Microsoft #documentation. Now though, you can track documentation updates across the entire #MicrosoftDocs #GitHub organization in one simple place, with ease!

Browse changes, see which repositories are evolving, and stay ahead of what’s new in #Microsoft #security and #tech docs.

🔗 Try it here: https://docstracker.marshsecurity.org

#MicrosoftDocs #CyberSecurity #Cloudflare #OpenSource #Documentation #DevTools #Microsoft #Azure #InfoSec #AppDev #Productivity

#ClickFix attacks remain a very serious threat to organisations.

In my latest #blog #post I explore what these attacks are, and how we can leverage a #defenseindepth approach to #protect ourselves and our users from them.

#cybersecurity #cyber #microsoft #email

https://marshsecurity.org/protecting-against-clickfix-with-the-microsoft-stack/

In my latest #blog I explore the world of #docker and common mistakes when it comes to securing your #containers both in your #homelab and at #enterprise level.

#cybersecurity #blogging #technology #tech

Read my blog today:
https://marshsecurity.org/securing-docker-containers/