#DefenderXDR

Rod Trent

@rodtrent.com

2 days ago

THE PROMPT for Microsoft Security - Issue #63 microsoftdefender.su...

#MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

4 days ago

GitHub - rohit8096-ag/Sentinel-Assessment-Tool: Sentinel Assessment Tool, designed to help SOC teams and detection engineers get a clear view of their Microsoft Sentinel and Microsoft Defender detection coverage against MITRE ATT&CK. Sentinel Assessment Tool, designed to help SOC teams and detection engineers get a clear view of their Microsoft Sentinel and Microsoft Defender detection coverage against MITRE ATT&CK. - r...

Sentinel MITRE ATT&CK Coverage Analyzer github.com/rohit8096...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

CyberTaters

@potato.software

4 days ago

Microsoft Sentinel Cost Estimation And Optimization — The Definitive Guide! charbelnemnom.com/se...

#MicrosoftSentinel #Potatosecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

4 days ago

Microsoft Sentinel Cost Estimation And Optimization — The Definitive Guide! - CHARBEL NEMNOM - MVP | MCT | CCSP | CISM - Cloud & CyberSecurity Learn effective strategies for Microsoft Sentinel cost estimation and optimization, focusing on analytics and data lake tiers.

Microsoft Sentinel Cost Estimation And Optimization — The Definitive Guide! charbelnemnom.com/se...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

6 days ago

Introducing effective settings: See security configurations enforced on your device | Microsoft Community Hub See exactly which security configurations are enforced on your device Security teams spend significant time defining policies for Microsoft Defender security...

Introducing effective settings: See security configurations enforced on your device techcommunity.micros...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

2 weeks ago

Generate playbooks using AI in Microsoft Sentinel

uros-babic.cloud/202...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

2 weeks ago

Scaling security operations with Microsoft Defender autonomous defense and expert-led services | Microsoft Security Blog This new guide from Microsoft explains why manual defense fails and how autonomous, expert-led security transforms modern protection against AI-powered cyberattacks.

Scaling security operations with Microsoft Defender autonomous defense and expert-led services www.microsoft.com/en...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

2 weeks ago

Introducing the next generation of SOC automation: Sentinel playbook generator | Microsoft Community Hub Security teams today operate under constant pressure. They are expected to respond faster, automate more, and do so without sacrificing precision....

Introducing the next generation of SOC automation: Sentinel playbook generator techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

2 weeks ago

Generate playbooks using AI in Microsoft Sentinel Generate playbooks through natural language conversations directly in the Defender portal.

Generate playbooks using AI in Microsoft Sentinel learn.microsoft.com/...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

GitHub - rohit8096-ag/sentinel-mitre-analyzer: Professional MITRE ATT&CK coverage analysis for Azure Sentinel Professional MITRE ATT&CK coverage analysis for Azure Sentinel - rohit8096-ag/sentinel-mitre-analyzer

Professional MITRE ATT&CK coverage analysis for Azure Sentinel github.com/rohit8096...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

THE PROMPT for Microsoft Security - Issue #62 microsoftdefender.su...

#MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

1 month ago

Public Preview Announcement: Empower Real-Time Security with Microsoft Sentinel’s CCF Push Feature | Microsoft Community Hub In today’s rapidly evolving threat landscape, organizations need security solutions that deliver actionable insights in real time, not minutes or hours after...

Public Preview Announcement: Empower Real-Time Security with Microsoft Sentinel’s CCF Push Feature techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

All in Sentinel data lake What Advance Hunting Tables too

All in Sentinel data lake socautomators.substa...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

What’s new in Microsoft Sentinel: February 2026 | Microsoft Community Hub February brings a set of new innovations to Sentinel that helps you work with security content across your SOC. This month’s updates focus on how security...

What’s new in Microsoft Sentinel: February 2026 techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era | Microsoft Security Blog New guide details how a unified, AI ready SIEM platform empowers security leaders to operate at the speed of AI, strengthen resilience, accelerate detection and response, and more.

The strategic SIEM buyer’s guide: Choosing an AI-ready platform for the agentic era www.microsoft.com/en...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

Lake-Only Ingestion for Microsoft Defender Advanced Hunting Tables is Now Generally Available | Microsoft Community Hub Security teams continue to generate unprecedented volumes of high‑fidelity telemetry across endpoints, identities, cloud apps, and email. While this data is...

Lake-Only Ingestion for Microsoft Defender Advanced Hunting Tables is Now Generally Available techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

Update: Changing the Account Name Entity Mapping in Microsoft Sentinel | Microsoft Community Hub The upcoming update introduces more consistent and predictable entity data across analytics, incidents, and automation by standardizing how the Account Name...

Update: Changing the Account Name Entity Mapping in Microsoft Sentinel techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

From signal to strategy: Closing attack paths with identity intelligence | Microsoft Community Hub Compromised credentials remain one of the most common entry points for attackers. In the first half of 2025 alone, identity-based attacks surged more than...

From signal to strategy: Closing attack paths with identity intelligence techcommunity.micros...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

1 month ago

New built‑in Alert Tuning rules in Defender We’ve often talked about alert fatigue here on the socautomators blog and how too many alerts create noise which can be the enemy of speed. The new built‑in alert tuning rules in Defender XDR improve how alerts are processed. These rules are meant to help analysts focus on the alerts most likely to require action, while automated triage runs behind the scenes.

New built‑in Alert Tuning rules in Defender socautomators.substa...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

1 month ago

THE PROMPT for Microsoft Security - Issue #61 microsoftdefender.su...

#MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

1 month ago

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan | Microsoft Security Blog CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan www.microsoft.com/en...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Neowin

@neowin.net

1 month ago

Microsoft Defender XDR now automatically tunes low-severity alerts Microsoft Defender XDR launches 12 auto-tuning rules to suppress low-severity alerts, reducing SOC alert fatigue while ensuring threats stay open.

Microsoft Defender XDR launches 12 auto-tuning rules to suppress low-severity alerts, reducing SOC alert fatigue while ensuring threats stay open. #MSFT #DefenderXDR #XDR

Rod Trent

@rodtrent.com

1 month ago

Microsoft Sentinel Storage Explained: Analytics Tier vs Data Lake vs Data Archive Microsoft Sentinel offers three storage options: Analytics Tier, Sentinel Data Lake, and Data Archive, each serving distinct purposes. Proper storage tiering is crucial to avoid high costs and inef…

Microsoft Sentinel Storage Explained: Analytics Tier vs Data Lake vs Data Archive secbyte.in/2026/02/0...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

The Agentic SOC Era: How Sentinel MCP Enables Autonomous Security Reasoning | Microsoft Community Hub Security teams already have access to enormous volumes of telemetry across identity, endpoint, network, and cloud. The real challenge isn’t collecting more...

The Agentic SOC Era: How Sentinel MCP Enables Autonomous Security Reasoning techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

The Microsoft Copilot Data Connector for Microsoft Sentinel is Now in Public Preview | Microsoft Community Hub We are happy to announce a new data connector that is available to the public: the Microsoft Copilot data connector for Microsoft Sentinel. The new Microsoft...

The Microsoft Copilot Data Connector for Microsoft Sentinel is Now in Public Preview techcommunity.micros...

#MicrosoftSentinel #Cybersecurity #MicrosoftSecurity #Security #DefenderXDR

Rod Trent

@rodtrent.com

1 month ago

Extending Defender’s AI Threat Protection to Microsoft Foundry Agents | Microsoft Community Hub Today’s blog post introduces new capabilities to strengthen the security and governance of AI agents using Microsoft Foundry Agent Service and explores how...

Extending Defender’s AI Threat Protection to Microsoft Foundry Agents techcommunity.micros...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

1 month ago

Architecting Trust: A NIST-Based Security Governance Framework for AI Agents | Microsoft Community Hub Architecting Trust: A NIST-Based Security Governance Framework for AI Agents The "Agentic Era" has arrived. We are moving from chatbots that simply talk to...

Architecting Trust: A NIST-Based Security Governance Framework for AI Agents techcommunity.micros...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

CyberTaters

@potato.software

1 month ago

Splitting single-tenant Microsoft Defender XDR Sentinel logs in multiple company scenarios techcommunity.micros...

#MicrosoftDefender #DefenderforClown #Security #MicrosoftSecurity #Potatosecurity #DefenderXDR #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

1 month ago

Splitting single-tenant Microsoft Defender XDR Sentinel logs in multiple company scenarios | Microsoft Community Hub This article describes a simple, yet effective solution for the problem of segregating Microsoft Defender XDR and Entra ID Sentinel logs ingestion in a...

Splitting single-tenant Microsoft Defender XDR Sentinel logs in multiple company scenarios techcommunity.micros...

#MicrosoftDefender #DefenderforCloud #Security #MicrosoftSecurity #Cybersecurity #DefenderXDR #MicrosoftThreatIntelligence

Rod Trent

@rodtrent.com

1 month ago

THE PROMPT for Microsoft Security - Issue #60 microsoftdefender.su...

#MicrosoftSentinel #DefenderXDR #MicrosoftDefender #SecurityCopilot #Cybersecurity #MicrosoftSecurity #Security #MicrosoftThreatIntelligence