All Categories: cybersecurity(24) sc-100(22) azure(16) microsoft(14) certification(11) productivity(6) linux(5) edgevolt labs(3) shell(3) iot(2) the drive on 17(2) roku(2) zero trust(2) marvel move(2) sendmail(2) marvel(2) packet capture(1) jks(1) pfx(1) michael hyatt(1) budgie(1) key vault(1) security workflows(1) nist(1) microsoft graph(1) verified id(1) mcsb(1) workload security(1) azure blueprints(1) azure landing zone(1) stix(1) taxii(1) data residency(1) azure monitor(1) conditional access(1) cwpp(1) cpsm(1) guardians of the galaxy(1) movie reviews(1) monster hunter now(1) fitness(1) logitech(1) java(1) miscellaneous(1) music(1) networking(1) cooking(1) metasploit(1) recipes(1) movies(1) soccer(1) authentication(1) playlist(1) ubuntu(1) traffic on 17(1) edgevolt radio(1) tcpdump(1) home


Security Certification Roadmap

December 14, 2023

Wow! Check out this awesome cybersecurity security infographic by Paul Jerimy. Original source here.

Silvrback blog image

Read More

Posted in: certificationcybersecurity

Microsoft Storm-0558 Attack Analysis

September 30, 2023

I meant to post this earlier but got distracted by a few other things. Yay for busy life, right?

Earlier this month Microsoft concluded their investigation of the recent Storm-0558 email compromise/attack and the results are... fascinating. I highly recommend checking out the blog post when you get a chance. It's available here. . . .

Read More

Posted in: cybersecuritymicrosoft

[SC-100] Conditional access "what if" tool

More security controls in the market need a feature like this.

August 16, 2023

I'm digging the "What If" tool in Azure Conditional Access component. The idea is simple: as you're building policies, you can throw various scenarios at the policy engine to understand what the heck it'll do.

This gives admins the opportunity to observe effects and perhaps test variations of authentication use . . .

Read More

Posted in: azurecertificationconditional accesscybersecuritysc-100

[SC-100] Sensitive Operations Report Workbook

August 16, 2023

Just a friendly reminder that the Microsoft sensitive operations report workbook exists and can be super helpful.

For those unfamiliar, it's an Azure Monitor workbook designed to capture activities/events that could be critical or impactful for Azure AD. Examples include:

  • Modified application and service . . .

Read More

Posted in: azureazure monitorcybersecuritymicrosoftsc-100

[SC-100] Data Residency Exceptions For Azure

Exceptions you say? Hmm...

August 15, 2023

This is just a quick note to remind folks that cloud service providers can (and often do) have exceptions to data residency. As an example, check out Microsoft Azure's platform notes here.

Operational statements like this change from moment to moment but, for the purpose of illustration, here's an example line:

. . .

Read More

Posted in: cybersecuritydata residencysc-100

[SC-100] Azure Blueprints vs Azure Landing Zone

August 13, 2023

This was another topic that was a little confusing: what's the difference between Azure Blueprints and Azure Landing Zone?

I came across various Microsoft documentation but it was still a little... vague.

Here's a nice table, provided courtesy of Google Bard:

sb_float_center

(usual disclaimer about AI-provided . . .

Read More

Posted in: azureazure blueprintsazure landing zonecertificationcybersecuritysc-100

[SC-100] The purpose of Azure Subscriptions

August 13, 2023

Azure Subscriptions are (to me at least) an interesting concept/term. I've taken several Microsoft exams involving the topic but to date, I haven't necessarily found a succinct way to describe them. This description in SC-100 training documentation is one of the best I've seen:

Everything starts with a subscription, . . .

Read More

Posted in: azurecybersecuritysc-100

Archive
   Subscribe by email and never miss a post.

This update link alerts you to new Silvrback admin blog posts. A green bubble beside the link indicates a new post. Click the link to the admin blog and the bubble disappears.

Got It!