Kia MatthewsGet Splunk Alerts When Users Grant Consent to Apps in Office 365In 2019 I was witness to a few instances of phishing attacks abusing Office 365 App consent. Instead of the classic play to trick a person…1 min read·Dec 31, 2020----
Kia MatthewsUsing Salt Grains to Output System Interface Names to suricata.yamlI am a SOC Engineer in a shop that deploys the exact same server loaded with Suricata to each of our company’s locations, and we use Salt…3 min read·Sep 27, 2019----
Kia MatthewsUsing python to add rules to an AWS security groupWho has time for manual data entry? I mean, I do, kinda, but I don’t wanna. So here’s a small python script to add a large list of IPs to…2 min read·Nov 16, 2018--2--2
Kia MatthewsOffice 365 Management API Connector for ELKDetailing my process for trying to figure this crap out.9 min read·Jul 17, 2018--4--4