Marius Sandbu

  • Home
  • About me
  • Books
  • Contact me

msandbu.org

cross-workspace-architecture
Uncategorized

Cross Analytics queries with a multitenant Azure Sentinel setup

I was currently in a project where we needed to have a multi-tenant Microsoft Sentinel environment. We had multiple Sentinel / Log Analytics workspaces where we needed to do cross queries to look at the datasets which is typically the case Read more…

By Marius Sandbu, 24 hours ago
Uncategorized

Microsoft Sentinel – Kusto queries for Killnet and geo lookup

Yesterday, many Norwegian websites were targeted in a DDoS attack by an activist group called Killnet as you can read more about here –> Norway hit with cyberattack, temporarily suspending service (yahoo.com) Killnet does primarily DDoS attacks using either flooding with Read more…

By Marius Sandbu, 6 days ago
Skjermbilde
Uncategorized

Secure Remote Access in 2022 with ZTNA

One of the sessions that I had the Nordic Infrastructure Conference was about how to provide secure access for users in 2022, which I also wanted to go into more depth here to showcase what kind of options we have Read more…

By Marius Sandbu, 3 weeks ago
Uncategorized

Data Protection for Cloud based Workloads

Consider the following, you are building a new set of services that is using the Public Cloud and the service consists of different resources such as virtual machines, PaaS services, and container-based workloads. You want to leverage PaaS services to Read more…

By Marius Sandbu, 1 month ago
Uncategorized

Distributed applications monitoring with Serverless360

One of the things I do miss from the old days with System Center Operations Manager, was the ability to create distributed applications. Which allowed us to drag components together that was monitored as a service. This could be components Read more…

By Marius Sandbu, 1 month1 month ago
62758b6310467465d98abda795f91103
Uncategorized

Private Endpoints – SNAT – UDR and Azure Firewall

When using PaaS services in a hub-and-spoke architecture a best-practice approach is to use Private Endpoints for accessing those services. This allows us to ensure that these services are only available internally in the Azure VNET and not publicly available. Read more…

By Marius Sandbu, 1 month ago
Uncategorized

The curious case of Azure Managed Identity and a compromised virtual machine

Last week I got contacted by a customer who was a bit stressed because someone had tampered with their environment in Azure, and they had no idea who it was and what they have been doing. Before I begin going Read more…

By Marius Sandbu, 2 months ago
last ned
Uncategorized

Getting started with Azure Container Apps

I was working on a customer project recently where we started to investigate Azure Container Apps which is a new service that is currently in preview from Microsoft. The feature provides developers with a way to deliver containerized applications without Read more…

By Marius Sandbu, 2 months ago
1_geWhD3uPkYESmA8jKb9jEQ
Uncategorized

Deployment of Kubernetes, Helm and YAML files using Terraform

One of the great things with Terraform is the wealth of support for different providers and platforms. For instance, you have support for the major cloud providers, SaaS services like Cloudflare, and virtualization layers such as VMware. So, when I’m Read more…

By Marius Sandbu, 2 months ago
Uncategorized

Phishing attacks in Microsoft Teams and external federation

A while back a customer of ours got targeted with a phishing attack that came through Microsoft Teams. What happened was that the attackers created a new O365 organization and named the users in their tenant like the people working Read more…

By Marius Sandbu, 2 months ago

Posts navigation

1 2 … 90 Next
ABOUT
ABOUT

My name is Marius Sandbu. I'm working as a Cloud Evangelist at Sopra Steria Blogging about topics within Cloud, End-user computing and other related topics.

Subscribe to msandbu.org

Enter your email address to subscribe

Join 555 other subscribers

Recent Posts
  • Cross Analytics queries with a multitenant Azure Sentinel setup
  • Microsoft Sentinel – Kusto queries for Killnet and geo lookup
  • Secure Remote Access in 2022 with ZTNA
  • Data Protection for Cloud based Workloads
  • Distributed applications monitoring with Serverless360
Marius Sandbu - [email protected] - 2020