ntyrlych

SIEM Tutorial with Live Cyber Attacks (Azure Portal/Sentinel, KQL, Network Security Groups)

In this tutorial, I’ll be describing the process of setting up Azure Sentinel (SIEM) as well as a Virtual Machine (VM) in the cloud which will function as a honeypot. This honeypot will be vulnerable to the internet, and we will be monitoring and logging attacks from different IP addresses from various countries around the …

SIEM Tutorial with Live Cyber Attacks (Azure Portal/Sentinel, KQL, Network Security Groups) Read More »