Introducing the New Microsoft Sentinel Logstash Output Plugin (Public Preview!) | Microsoft Community Hub Many organizations rely on Logstash as a flexible, trusted data pipeline for collecting, transforming, and forwarding logs from on-premises and hybrid...

Introducing the New Microsoft Sentinel Logstash Output Plugin (Public Preview!) techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Accelerate Agent Development: Hacks for Building with Microsoft Sentinel data lake | Microsoft Community Hub As a Senior Product Manager | Developer Architect on the App Assure team working to bring Microsoft Sentinel and Security...

Accelerate Agent Development: Hacks for Building with Microsoft Sentinel data lake techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

THE PROMPT for Microsoft Security - Issue #65 open.substack.com/pu...

#MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence

A third-party connector integrating Claude with Microsoft Sentinel is now available | Microsoft Community Hub Security teams are increasingly exploring how AI assistants can support them in investigating incidents, asking questions, and exploring their data. At the...

A third-party connector integrating Claude with Microsoft Sentinel is now available techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Announcing public preview of custom graphs in Microsoft Sentinel | Microsoft Community Hub Security attacks span identities, devices, resources, and activity, making it critical to understand how these elements connect to expose real risk. In...

Announcing public preview of custom graphs in Microsoft Sentinel techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

GitHub - rohit8096-ag/sentinel-ingestion-analyzer: Discover how every _CL table gets its data into Microsoft Sentinel. Scans Logic Apps, Azure Functions, AMA agents, Arc machines, DCRs, and diagnostic settings. Generates a self-contained HTML report with health score, volume charts, and legacy migration plan. Discover how every _CL table gets its data into Microsoft Sentinel. Scans Logic Apps, Azure Functions, AMA agents, Arc machines, DCRs, and diagnostic settings. Generates a self-contained HTML repor...

Sentinel Custom Ingestion Audit Tool github.com/rohit8096... #MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Microsoft Sentinel is now supported in Unified RBAC with row-level access | Microsoft Community Hub Enabling streamlined, granular, and scalable permissions We’re excited to announce the Public Preview of Unified Role Based Access Control (URBAC) for...

Microsoft Sentinel is now supported in Unified RBAC with row-level access techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

THE PROMPT for Microsoft Security - Issue #64 open.substack.com/pu...

#MVPBuzz #MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence

Maximizing Microsoft Sentinel ROI With VirtualMetric DataStream – Part 2 - CHARBEL NEMNOM - MVP | MCT | CCSP | CISM - Cloud & CyberSecurity Discover how to enhance Windows security data processing in Microsoft Sentinel with VirtualMetric DataStream and optimize Windows Security Event Forwarding.

Maximizing Microsoft Sentinel ROI With VirtualMetric DataStream – Part 2 charbelnemnom.com/mi...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

THE PROMPT for Microsoft Security - Issue #63 microsoftdefender.su...

#MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence

GitHub - rohit8096-ag/Sentinel-Assessment-Tool: Sentinel Assessment Tool, designed to help SOC teams and detection engineers get a clear view of their Microsoft Sentinel and Microsoft Defender detection coverage against MITRE ATT&CK. Sentinel Assessment Tool, designed to help SOC teams and detection engineers get a clear view of their Microsoft Sentinel and Microsoft Defender detection coverage against MITRE ATT&CK. - r...

Sentinel MITRE ATT&CK Coverage Analyzer github.com/rohit8096...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Microsoft Sentinel Cost Estimation And Optimization — The Definitive Guide! charbelnemnom.com/se...

#MicrosoftSentinel #Potatosecurity #MicrosoftSecurity #Security #DefenderXDR

Microsoft Sentinel Cost Estimation And Optimization — The Definitive Guide! - CHARBEL NEMNOM - MVP | MCT | CCSP | CISM - Cloud & CyberSecurity Learn effective strategies for Microsoft Sentinel cost estimation and optimization, focusing on analytics and data lake tiers.

Microsoft Sentinel Cost Estimation And Optimization — The Definitive Guide! charbelnemnom.com/se...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Introducing effective settings: See security configurations enforced on your device | Microsoft Community Hub See exactly which security configurations are enforced on your device Security teams spend significant time defining policies for Microsoft Defender security...

Introducing effective settings: See security configurations enforced on your device techcommunity.micros...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Generate playbooks using AI in Microsoft Sentinel

uros-babic.cloud/202...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Scaling security operations with Microsoft Defender autonomous defense and expert-led services | Microsoft Security Blog This new guide from Microsoft explains why manual defense fails and how autonomous, expert-led security transforms modern protection against AI-powered cyberattacks.

Scaling security operations with Microsoft Defender autonomous defense and expert-led services www.microsoft.com/en...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Introducing the next generation of SOC automation: Sentinel playbook generator | Microsoft Community Hub Security teams today operate under constant pressure. They are expected to respond faster, automate more, and do so without sacrificing precision....

Introducing the next generation of SOC automation: Sentinel playbook generator techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Generate playbooks using AI in Microsoft Sentinel Generate playbooks through natural language conversations directly in the Defender portal.

Generate playbooks using AI in Microsoft Sentinel learn.microsoft.com/...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

GitHub - rohit8096-ag/sentinel-mitre-analyzer: Professional MITRE ATT&CK coverage analysis for Azure Sentinel Professional MITRE ATT&CK coverage analysis for Azure Sentinel - rohit8096-ag/sentinel-mitre-analyzer

Professional MITRE ATT&CK coverage analysis for Azure Sentinel github.com/rohit8096...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

THE PROMPT for Microsoft Security - Issue #62 microsoftdefender.su...

#MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence

Public Preview Announcement: Empower Real-Time Security with Microsoft Sentinel’s CCF Push Feature | Microsoft Community Hub In today’s rapidly evolving threat landscape, organizations need security solutions that deliver actionable insights in real time, not minutes or hours after...

Public Preview Announcement: Empower Real-Time Security with Microsoft Sentinel’s CCF Push Feature techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

All in Sentinel data lake What Advance Hunting Tables too

All in Sentinel data lake socautomators.substa...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

What’s new in Microsoft Sentinel: February 2026 | Microsoft Community Hub February brings a set of new innovations to Sentinel that helps you work with security content across your SOC. This month’s updates focus on how security...

What’s new in Microsoft Sentinel: February 2026 techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era | Microsoft Security Blog New guide details how a unified, AI ready SIEM platform empowers security leaders to operate at the speed of AI, strengthen resilience, accelerate detection and response, and more.

The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era www.microsoft.com/en...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Lake-Only Ingestion for Microsoft Defender Advanced Hunting Tables is Now Generally Available | Microsoft Community Hub Security teams continue to generate unprecedented volumes of high‑fidelity telemetry across endpoints, identities, cloud apps, and email. While this data is...

Lake-Only Ingestion for Microsoft Defender Advanced Hunting Tables is Now Generally Available techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Update: Changing the Account Name Entity Mapping in Microsoft Sentinel | Microsoft Community Hub The upcoming update introduces more consistent and predictable entity data across analytics, incidents, and automation by standardizing how the Account Name...

Update: Changing the Account Name Entity Mapping in Microsoft Sentinel techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

From signal to strategy: Closing attack paths with identity intelligence | Microsoft Community Hub Compromised credentials remain one of the most common entry points for attackers. In the first half of 2025 alone, identity-based attacks surged more than...

From signal to strategy: Closing attack paths with identity intelligence techcommunity.micros...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

New built‑in Alert Tuning rules in Defender We’ve often talked about alert fatigue here on the socautomators blog and how too many alerts create noise which can be the enemy of speed. The new built‑in alert tuning rules in Defender XDR improve how alerts are processed. These rules are meant to help analysts focus on the alerts most likely to require action, while automated triage runs behind the scenes.

New built‑in Alert Tuning rules in Defender socautomators.substa...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

THE PROMPT for Microsoft Security - Issue #61 microsoftdefender.su...

#MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan | Microsoft Security Blog CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan www.microsoft.com/en...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence