Category: Automations
-
Sentinel Rule Assessment Tool
Sentinel Rule Audit Dashboard MS Sentinel Audit Analytics Rule Dashboard No data loaded Load CSV Overview MITRE Coverage All Rules Remediation Backlog Column Dictionary [ ↓ ] Drop sentinel_audit_results.csv here or click “Load CSV” in the top-right corner Load a CSV to view MITRE coverage MITRE ATT&CK Tactic Coverage Techniques distribution Severity by tactic Load… Read More →
-
Auditing Microsoft Sentinel Analytics Rules with Python
Auditing Microsoft Sentinel Analytics Rules with Python Security Engineering Python · Sentinel · SOC Detection Engineering Auditing Microsoft SentinelAnalytics Rules with Python A practical walkthrough of building a rule audit pipeline — from raw JSON exports to a scored remediation backlog and an interactive HTML dashboard — with no live Azure access required. Scriptssentinel_audit.py ·… Read More →
-
Advanced Threat Hunting in Microsoft Sentinel
From reactive alerting to proactive adversary detection. A practitioner field guide to threat hunting in Microsoft Sentinel — with 4 production KQL queries, real enterprise scenario, and a framework for repeatable hunting practice. Read More →
-
Agentic AI: The Rise of Self-Driving Systems in Your Work and Life
Hook Think cruise control → self-driving. Think spell-check → auto-rewrite. Now think “SIEM alert” → agentic auto-contain. Agentic AI is the jump from assistive to autonomous—from “suggest and wait” to “decide and do.” Why It’s Needed (Context) Modern environments are too fast and too complex for humans-in-the-loop on every decision. Core Concepts Explained Simply 🧠… Read More →