Suggested Pages
Detecting Gootkit banking Trojan
By Alex Wheelhouse
/ April 3, 2022
Description To assist SOC's (Security Operation Teams) and detection engineers I have pulled together a few examples for detection analytics...
Read More
Azure Useful Documents
By Alex Wheelhouse
/ January 23, 2022
A collated list of the most useful documented reference material on all things Azure. Azure Sentinel ☁️ Deploy Sentinel as...
Read More
Azure Sentinel Agents
By Alex Wheelhouse
/ August 2, 2021
Azure comes with a few different Azure Sentinel agents for data ingestion to Azure log analytics. The agents are built...
Read More
Agent Tesla now beats Microsoft Defender Detection
By Alex Wheelhouse
/ June 21, 2021
Agent Tesla, a malware as a service tool used by hackers and APT's (advanced persistent threats) has recently been under...
Read More
Getting Started with SOAR (Security Orchestration, Automation and Response)
By Alex Wheelhouse
/ June 20, 2021
SOAR Overview Security Orchestration, Automation and Response abbreviated to SOAR is a Security focused platform design to automate many of...
Read More
Information Security Qualifications
By Alex Wheelhouse
/ April 6, 2021
Starting out in Information Security There are many avenues to get your foot in the door into and gain Cyber...
Read More
What is Cyber Security/Information Security?
By Alex Wheelhouse
/ January 19, 2021
Cyber security or otherwise known as Information Security is the act of individuals and organisations reducing the risk of cyber...
Read More
Why is the Cyber Security Budget so hard to get?
By Alex Wheelhouse
/ January 5, 2021
Now I know this is a vastly complicated issue that nearly all Security teams face in their organisation for one...
Read More
Azure Sentinel Threat Hunting
By Alex Wheelhouse
/ January 1, 2021
Overview Azure Sentinel Threat Hunting allows Security professionals to proactively identify potential threats that have gone unnoticed through analytics rules....
Read More
Azure Sentinel Analytics (Alerting)
By Alex Wheelhouse
/ December 30, 2020
Overview The Azure Sentinel SIEM allows Security Operations team to detect active threats on the network by creating analytics rules...
Read More