Marius Sandbu

  • Home
  • About me
  • Books
  • Contact me

msandbu.org

Uncategorized

Azure DDoS IP Protection

Last week during Ignite 2022, Microsoft released a public preview of a new DDoS feature called IP-based protection which is aimed at protecting DDoS attacks on layer 4 (namely TCP SYN Flood attacks) When looking at the statistics for Q3 Read more…

By Marius Sandbu, 4 months ago
last ned
Uncategorized

Deployment of Azure Container Apps with Volume Mounts using Terraform

Recently with working with a customer, we wanted to set up Azure Container Apps with Volume Mounts using CI/CD with Terraform. Until now, the only option has been to configure it using Azure CLI. However! last week Microsoft introduced some Read more…

By Marius Sandbu, 4 months ago
Uncategorized

Azure Active Directory – Security Overview

After working with Azure AD for a looong time I always forget how complex it has gotten over the years, with all the new features and capabilities that have been introduced. Therefore, I decided that I wanted to create an Read more…

By Marius Sandbu, 4 months4 months ago
Uncategorized

Microsoft Defender falsely detecting Win32/Hive.ZY

Just a quick post, after a recent signature update to Microsoft Defender (This one –> Antimalware updates change log – Microsoft Security Intelligence)  you might get these events from Defender. This was a false positive and has been fixed in the Read more…

By Marius Sandbu, 5 months ago
Microsoft Dev Box an introduction
Uncategorized

Getting started with Microsoft DevBox

Earlier today, Microsoft released DevBox into Public Preview (which is a feature that was announced at Microsoft build earlier this summer. Microsoft DevBox can be seen as an alternative to Windows 365 and Azure Virtual Desktop but is aimed at Read more…

By Marius Sandbu, 6 months ago
Skjermbilde 2022-08-12 143052
Uncategorized

Getting started with Microsoft Defender EASM (External Attack Surface Management)

About a week ago, Microsoft released a new product called Microsoft Defender EASM which is based upon an earlier product from RiskIQ and is now a part of Microsoft Azure. You can look at this as a Shodan-light alternative where Read more…

By Marius Sandbu, 6 months6 months ago
Uncategorized

Citrix (CVAD) vs Azure Virtual Desktop – Part One

A long time ago I wrote a blog post around Microsoft RDS vs Citrix XenDesktop at the time where I looked at the overall functionality and end-user experience, which you can read about here  https://msandbu.org/so-why-choose-citrix-over-microsoft-rds-2/ (and now fast forward to 2022 Read more…

By Marius Sandbu, 6 months6 months ago
Uncategorized

Streaming of audit logs from Oracle Cloud to Microsoft Sentinel

With the recent announcement of a new partnership between Microsoft and Oracle for Oracle database services, I wanted to look further into setting up log collection from Oracle Cloud to Microsoft Sentinel. When I started digging there wasn’t much information Read more…

By Marius Sandbu, 6 months ago
Uncategorized

DDoS protection – Azure vs Cloudflare

In the Summer of 2021, Microsoft announced that they stopped one of the largest DDoS attacks ever recorded (Microsoft says it mitigated one of the largest DDoS attacks ever recorded – The Verge) saying they were able to mitigate a 2.4Tbps Read more…

By Marius Sandbu, 6 months ago
cross-workspace-architecture
Uncategorized

Cross Analytics queries with a multitenant Azure Sentinel setup

I was currently in a project where we needed to have a multi-tenant Microsoft Sentinel environment. We had multiple Sentinel / Log Analytics workspaces where we needed to do cross queries to look at the datasets which is typically the case Read more…

By Marius Sandbu, 7 months ago

Posts navigation

Previous 1 2 3 … 92 Next
ABOUT
ABOUT

My name is Marius Sandbu. I'm working as a Cloud Evangelist at Sopra Steria Blogging about topics within Cloud, End-user computing and other related topics.

Subscribe to msandbu.org

Enter your email address to subscribe

Join 629 other subscribers

Recent Posts
  • Trouble with Microsoft Office 365 Apps has disappeared – Trouble with ASR
  • Auditing Windows File Servers with Azure Sentinel / Log Analytics
  • New book – Windows Ransomware Protection and Detection
  • Azure Resource Manager Rate limiting and a hint of DDOS?
  • OpenAI – Use cases and Automation
Marius Sandbu - [email protected] - 2020