7 IT & Security

Blog

sevenitblog.com/

Profile

sevenitblog.com/author/dakseve

Homepage

sevenitblog.com

  • Monitoring Privileged logins in Virtual machines – Sentinel

    Introduction Detecting anomalies in administrator accounts, it’s something worth checking from time to time The Sentinel query is designed to analyse security events related to special privileges granted to user accounts within the last 30 days. Tracking and analysing which special privileges have been assigned to user accounts, identifying potential security risks or policy violations…

  • Sentinel Workbook Dashboard Events for Malware

    Introduction Azure Workbooks offer detailed, interactive data exploration tools in Azure. They allow for in-depth analysis with the ability to create complex queries, interactive reports, and detailed visualizations, combining data from multiple sources. For more information on how to create your work books, click here In this case, we have created and added into our…

  • Monitoring Azure AD MFA changes with Sentinel

    Introduction Monitoring changes to Multi-Factor Authentication (MFA) settings is a critical aspect of maintaining robust security practices As we evolve in the new cloud era with AI, there has been a high demand on standards to maintain MFA methodology. It is certainly true that password only is not good enough in this era . MFA…

  • Phishing simulations with Ironscales

    Introduction Ironscales and other platforms are already using Adaptive AI technology for advanced phishing and BEC attacks, The AI dynamically adjusts its detection mechanisms based on real-world data and user feedback, ensuring high efficacy in threat detection and prevention. There is more .. it also trains your users! Launching simulated phishing attacks in a controlled…

  • Active directory Add/Remove Members using dates

    Introduction There are case scenarios where new AD accounts may have to be part of certain groups This script ensures to remove using the time as reference of the group removal based on the dates. Please ensure to follow some security recommendations before running PowerShell scripts in production active directory servers Security Recommendations of AD…