Katos

@[email protected]
12 Followers
23 Following
44 Posts
Working on Homebox.
Breaking computers, shouting at users.
Websitehttps://marshsecurity.org
Homeboxhttps://git.homebox.software/
KatosNov 23

New blog post live for my Sentinel Saturday series!   
Read the blog 👉 https://marshsecurity.org/sentinel-saturday-using-tasks-with-automation/

In this post, I explore the power of using Microsoft Sentinel Tasks as part of your automation workflows.

Most teams aren’t getting the full #value out of Tasks in Microsoft Sentinel. Are you? When you combine Sentinel Tasks with automation, they become a game-changer.

- Auto-create tasks when automation fails (so nothing slips through the cracks)
- Auto-complete tasks when automation succeeds
- Use tasks to verify automation outcomes
- Build engineering feedback loops and automation #QA

Read the blog 👉 https://marshsecurity.org/sentinel-saturday-using-tasks-with-automation/

#MicrosoftSentinel #SentinelAutomation #CyberSecurity #SOCAutomation
#CloudSecurity #AzureSecurity #SIEM #SecOps #Automation #InfoSec
#CyberSecurityCommunity #BlueTeam #ThreatDetection #SecurityEngineering #SecurityOperations

KatosOct 18, 2025

🕵️‍♂️ KQL is both a science and an art.

If you’ve ever felt your Sentinel queries were running slow or costing more than they should, you’re not alone.
This week’s #SentinelSaturdays covers how to write leaner, faster, more efficient KQL queries with practical examples you can use today.

🔗 Read the full walkthrough here: https://marshsecurity.org/sentinel-skills-saturday-edition-one/

Share your comments 👇
What’s YOUR top KQL tip or favourite optimisation trick?

Let’s build a thread of practical advice for the hunting community.
#MicrosoftSentinel #KQL #ThreatHunting #SecurityOperations

KatosOct 18, 2025

🚀 Introducing... Microsoft Docs Tracker!

If you're anything like me, it can often be difficult to keep up-to-date with the constant changes of Microsoft #documentation. Now though, you can track documentation updates across the entire #MicrosoftDocs #GitHub organization in one simple place, with ease!

Browse changes, see which repositories are evolving, and stay ahead of what’s new in #Microsoft #security and #tech docs.

🔗 Try it here: https://docstracker.marshsecurity.org

#MicrosoftDocs #CyberSecurity #Cloudflare #OpenSource #Documentation #DevTools #Microsoft #Azure #InfoSec #AppDev #Productivity

KatosOct 10, 2025

#ClickFix attacks remain a very serious threat to organisations.

In my latest #blog #post I explore what these attacks are, and how we can leverage a #defenseindepth approach to #protect ourselves and our users from them.

#cybersecurity #cyber #microsoft #email

https://marshsecurity.org/protecting-against-clickfix-with-the-microsoft-stack/

Show threadKatosFeb 9, 2025
@chris wow, there’s a name I haven’t heard for some time. I’ll have to check them out and see what the status is.
Thanks Chris!
KatosFeb 9, 2025
@mkj no probs! Thanks for your help! 🫡
Show threadKatosFeb 9, 2025

@bitpirate @mkj This module accepts .cube, .3dl, .png (haldclut) and .gmz files.

So doesn’t support RAW files, or even JPEG for that matter. That’s a shame. Thanks for the link though!

KatosFeb 9, 2025
@mkj thanks! I have indeed, not sure if it supports LUTs though?
Show threadKatosFeb 9, 2025
@chris had a few recommendations for Darktable now, hasn’t heard of Rawtherapee before so I’ll need to check that. Thanks for the heads up!
KatosFeb 9, 2025

Does anybody have any good recommendations for #adobe #lightroom alternatives for #linux please? Ideally ones that still support LUTs so that I can port over my old stuff.
Looking for #free preferably, but don’t mind paying a little bit, just not the crazy Adobe prices 😅

Thanks in advance!