There’s a New Microsoft Sentinel Entry Page in Town

A new entry page for Microsoft Sentinel is rolling out after a successful stint in the Private Preview program. The rollout is slow but is creeping its way into every Microsoft Sentinel instance as you read this. You can see the differences between the two overviews in the image below and the changes are significant. … Continue reading There’s a New Microsoft Sentinel Entry Page in Town

Creating an URL Detonation Demo for Microsoft Sentinel

URL Detonation is a valuable feature of Microsoft Sentinel that provides deeper insights that enable faster triage of alerts. URL detonation is built into Microsoft Sentinel so another tool to accomplish this is not necessary. I have a method that enables one to create a quick demo for this scenario that utilizes a Watchlist and … Continue reading Creating an URL Detonation Demo for Microsoft Sentinel

Things to Do After October 24 When Microsoft 365 Defender for Microsoft Sentinel Integrates AADIP Alerts and Incidents

It's the Friday, before the weekend, just prior to a major Microsoft Sentinel feature update. Did you know that? Well, you would only know it if you're watching the "What's New" section of the Microsoft Sentinel docs - and who does that but me? - so, that's why I'm posting about here to make sure … Continue reading Things to Do After October 24 When Microsoft 365 Defender for Microsoft Sentinel Integrates AADIP Alerts and Incidents