Tag: Microsoft Sentinel

Creating a codeless data connector for Microsoft Sentinel

Microsoft recently introduced the Codeless Connector Platform – a new preview feature for Microsoft Sentinel that enables partners, developers and power users with the ability to create custom connectors to ingest data from third-party REST APIs without writing a single line of code. In this post we’ll explore the process of using the platform to ingest Atlassian Jira audit logs into Microsoft Sentinel…

Infrastructure as Code in practice: Building a Blue Team lab with Bicep

Experienced cyber security professionals often recommend students looking to break into the industry invest in a home lab, and I wholeheartedly agree. However, if you’re anything like me you’ll tend to spin up new lab environments only to then rip them down and recreate them a few days later, which can quickly become onerous. You know the saying – if you do it more than once, automate it – and what better way to do that than with Infrastructure as Code?