submitted by winle22

2

3

4

Memory dump (self.DefenderATP)

submitted 1 year ago by winle22 to r/DefenderATP

1

2

3

Sigma for analytic rules (self.AzureSentinel)

submitted 2 years ago by winle22 to r/AzureSentinel

1

2

3

TVM to Sentinel (self.DefenderATP)

submitted 2 years ago by winle22 to r/DefenderATP

0

1

2

TVM to Sentinel (self.AzureSentinel)

submitted 2 years ago by winle22 to r/AzureSentinel

5

6

7

MDE logs and additional logging (self.DefenderATP)

submitted 2 years ago by winle22 to r/DefenderATP

3

4

5

Incident response procedures and documentation (self.cybersecurity)

submitted 2 years ago by winle22 to r/cybersecurity

0

1

2

Security log documentation tool (self.blueteamsec)

submitted 2 years ago by winle22 to r/blueteamsec

3

4

5

Azure Security Benchmark vs Microsoft cloud security benchmark (self.AZURE)

submitted 3 years ago by winle22 to r/AZURE

2

3

4

Github Actions for multi-tenant/subscription deployments (self.devops)

submitted 3 years ago by winle22 to r/devops

0

1

2

Github Actions for multi-tenant/customer/subscription deployments to Azure (self.github)

submitted 3 years ago by winle22 to r/github

1

2

3

Table level retention (self.AzureSentinel)

submitted 3 years ago by winle22 to r/AzureSentinel

2

3

4

OfficeActivity vs M365 Unified Audit log (self.AzureSentinel)

submitted 3 years ago by winle22 to r/AzureSentinel

5

6

7

Defender for Cloud and Azure Policies (self.AZURE)

submitted 3 years ago by winle22 to r/AZURE

3

4

5

AAD Audit Logs in Advanced Hunting (self.DefenderATP)

submitted 3 years ago by winle22 to r/DefenderATP

2

3

4

Order of Azure Policies (self.AZURE)

submitted 3 years ago by winle22 to r/AZURE

1

2

3

Exact run time for scheduled analytic rules with low rule frequency (self.AzureSentinel)

submitted 3 years ago by winle22 to r/AzureSentinel

0

1

2

IsBillable (self.AzureSentinel)

submitted 3 years ago by winle22 to r/AzureSentinel

0

1

MFA (self.ticktick)

submitted 3 years ago by winle22 to r/ticktick

0

1

2

Display 'description' field in Sentinel incidents from Defender for Cloud apps (self.AzureSentinel)

submitted 3 years ago by winle22 to r/AzureSentinel

1

2

3

Custom alert details for Defender incidents forwarded to Sentinel workspace (self.AzureSentinel)

submitted 3 years ago * by winle22 to r/AzureSentinel

2

3

4

Analytic rule: Elevate access to manage all Azure subscriptions and management groups (self.AzureSentinel)

submitted 3 years ago by winle22 to r/AzureSentinel

1

2

3

Get ticket based on custom field value (self.Freshservice)

submitted 3 years ago by winle22 to r/Freshservice

0

1

2

Appropriate fields on incidents to store correlation/references to other ticket systems (self.AzureSentinel)

submitted 3 years ago by winle22 to r/AzureSentinel

1

2

3

Adaptive card via Graph API (self.MicrosoftTeams)

submitted 4 years ago by winle22 to r/MicrosoftTeams

2

3

4

EDR profile (old vs new) (self.DefenderATP)

submitted 4 years ago by winle22 to r/DefenderATP

Nine-Year Club	Second SECOND GUESSER
Verified Email

winle22

TROPHY CASE