Azure Integrating Canary Tokens with Microsoft Sentinel For anyone not familiar with Canary Tokens [https://canarytokens.org/] - it's a free service offered by Thinkst [https://thinkst.com/]which allows for the By Martin Rothe 28 Dec 2021
Threat Hunting Hunting for Risky Rules in Office 365 Using the Microsoft Graph API with Python to hunt down malicious inbox rules in Office365 mailboxes By Martin Rothe 23 Aug 2020
Azure Analyzing Honeypot Data with Sentinel Using HoneyDB and Suricata together with Azure Sentinel to analyse honeypot data and provide useful insights By Martin Rothe 6 Jun 2020
Azure Network IDS & Azure Sentinel I've been starting to use Azure Sentinel [https://azure.microsoft.com/en-gb/services/azure-sentinel/] recently and explore some of its capabilities - there are currently By Martin Rothe 22 Mar 2020
Cloud Building a Tram-Time Display with AWS Lambda The real-time information displays at Bus and Tram stops in Nottingham are really useful but for a while I've wanted to get this information before By Martin Rothe 27 Dec 2018
tools Excel for Infosec When you think about software for information security you probably think of NMAP, Mimikatz, maybe a SIEM or Burp. But I find I spend quite By Martin Rothe 13 Oct 2018
tools Process Guide - A tool for generating HTML process walkthrough guides using Microsoft Excel An easy to follow process guide can improve consistency and professionalism while collecting details and performing triage By Martin Rothe 22 Sep 2018
certifications Taking the CPSA (Crest Practitioner Security Analyst) Exam I've recently taken (and passed) the CPSA exam [https://www.crest-approved.org/examination/practitioner-security-analyst/] and wanted to write up some thoughts and some guidance for By Martin Rothe 13 Sep 2018