Get Splunk Alerts When Users Grant Consent to Apps in Office 365In 2019 I was witness to a few instances of phishing attacks abusing Office 365 App consent. Instead of the classic play to trick a person…Dec 31, 2020Dec 31, 2020
Using Salt Grains to Output System Interface Names to suricata.yamlI am a SOC Engineer in a shop that deploys the exact same server loaded with Suricata to each of our company’s locations, and we use Salt…Sep 27, 2019Sep 27, 2019
Using python to add rules to an AWS security groupWho has time for manual data entry? I mean, I do, kinda, but I don’t wanna. So here’s a small python script to add a large list of IPs to…Nov 16, 20182Nov 16, 20182
Office 365 Management API Connector for ELKDetailing my process for trying to figure this crap out.Jul 17, 20184Jul 17, 20184