WELCOME TO AZURE SECOPS AND AZURE MONITORING TECHNICAL BLOGS.
Scroll down to read about Monitoring and SIEM blogs.
Technical blogs around Azure Sentinel, Azure Log Analytics, Azure Automation, Azure Defender, KQL and many other things.
Search
Configure the Azure Sentinel.
Learn how to configure Azure Sentinel. If you are preparing for SC200 examination then its important to learn how to configure the Azure...
Learn how to write your first KQL query!
KQL is quite important in Azure SECOPS domain. Azure Sentinel, Azure Monitor, Defender suite, etc. are powered by KQL . Sometime when...
Azure Sentinel KQL Query to generate report of Users and Authentication Methods they have used.
Below KQL query will generate the report that generate report of Users and Authentication Methods they have used. SigninLogs | extend...
Azure Sentinel Playbook Code for pulling up the IP Address from the Alert.
{ "definition": { "$schema": "https://schema.management.azure.com/providers/Microsoft.Logic/schemas/2016-06-01/workflowdefinition.json#",...
KQL Query in Sentinel to generate report of Users and details the Authentication Methods they have u
SigninLogs | extend authenticationMethod_ = tostring(parse_json(AuthenticationDetails)[0].authenticationMethod) | extend...
Azure Sentinel Defender Connectors Explained.
I have been working on the Sentinel for quite a long. Off late I got a task to explore the Defender Connectors. When I looked first into...
Unable to cast object of type ‘System.String’ to type ‘System.Object[]’.
Environment: Azure Automation. Runbook Type: PowerShell. Mostly this problem arises in Azure Automation Runbook, if you are passing Array...
Lesson learnt while installing the SysTrack 9.0
Just out of curiosity I thought on installing the Lakeside SysTrack 9.0 on Azure Virtual Machine. Here are few things I learnt. You can’t...
Configuring the Domain Controller on the Azure VM and then putting another VM in domain.
Configuring the Domain Controller on the Azure VM and then putting another VM in domain. While working as part of the monitoring team I...
Building the Resiliency in the Infrastructure with Azure Automation PowerShell Runbooks
Here is the copy of my session on “Building the Resiliency in the Infrastructure withAzure Automation PowerShell Runbooks” at Expert Live...
[Azure Log Analytics\Azure Monitor] Extracting the values from $webhookdata.
While configuring the alerts and action groups, $webhoodata is used to provide input to the Azure Automation based runbooks. More...
SCOM 2019 Report Deployment is failing.
Environment :- SCOM 2019, SQL 2017, SSRS 2017. SCOM 2019 report deployment is failing with the errors:- Failed to deploy reporting...
What’s new in Azure Monitor.
Download
Basic of Azure Security
Cloud Security via Security Center
Create a Configuration Manager technical preview lab in Azure
https://docs.microsoft.com/en-us/sccm/core/get-started/azure-template? platform=hootsuite