Run XDRInternals as GitHub Action
A guide on automating XDRInternals authentication in a GitHub Action using passkeys, exploring security implications and implementation details.
Fabian, a German Cloud Architect and Microsoft MVP, specializes in Azure, Active Directory, security, and automation with PowerShell, sharing insights through his blog and community events.
4 Artikel from this blog
A guide on automating XDRInternals authentication in a GitHub Action using passkeys, exploring security implications and implementation details.
How to remove orphaned Sentinel workspaces from the Microsoft Defender XDR Streaming API to resolve configuration limits and errors.
Part 3 of a series on using GraphAPIAuditEvents logs for threat detection in Microsoft environments, focusing on detection queries and analysis.
Explains the security risks of Microsoft's Device Code Flow and how to protect against phishing using Conditional Access policies.