Monthly Archives: December 2019

Azure Sentinel ARM Template

Posted on 12/31/2019 by azsec

I got a question from some readers asking about if there is a way to deploy Azure Sentinel through Azure ARM template and what are common use cases for deploying such an ARM template. In this article, let’s explore the … Continue reading

Posted in Security Automation | Tagged , | 3 Comments

Security Monitoring and Detection Tips for your Storage Account – Part 4

Posted on 12/31/2019 by azsec

In part 3, you were introduced some storage account related alerts that are generated by Azure Security Center -Advanced Threat Protection. You also got to know a few ways to manually generate those alerts so you could look into how … Continue reading

Posted in Monitoring & Detection | Tagged , | 1 Comment

Deploy Azure Security Center Blueprint

Posted on 12/30/2019 by azsec

A few readers after reading this article about Azure Security Center ARM template asked me if they could include Azure Security Center ARM template to their Azure Blueprint so they could deploy it widely along with other artifacts. In this … Continue reading

Posted in Governance & Compliance | Tagged , | 2 Comments

Azure Security Center ARM Template

Posted on 12/30/2019 by azsec

I got a question from a reader asking if there is any ARM template for Azure Security Center and what are common use cases for such an ARM template. In this article, let’s explore the ARM template for Azure Security … Continue reading

Posted in Azure Security Center, Security Automation | Tagged | 4 Comments

Azure Disk Encryption ARM template for Windows VM

Posted on 12/28/2019 by azsec

I had an article about a healthy Windows virtual machine in Azure and got a feedback that the virtual machine should have disk encryption in place. That feedback is very valuable and it drove me to do more research and … Continue reading

Posted in Secure Development | Tagged , | 1 Comment

Deploy a healthy development Windows virtual machine

Posted on 12/27/2019 by azsec

Recently a developer asked me about what would be considered a healthy virtual machine for development as he wanted to deploy a virtual machine on Microsoft Azure after his personal laptop was slow and didn’t work stably. In this article, … Continue reading

Posted in Security Automation | Tagged , | Leave a comment

Query your virtual machine with Azure Resource Graph

Posted on 12/25/2019 by azsec

I got a question from a friend if he could extract some common information about Azure virtual machines that he could send to his manager as a report without any use of scripting language like PowerShell. Given the fact that … Continue reading

Posted in Security Automation | Tagged , | Leave a comment

Azure ARM Template for VM Creation with AAD Sign-in

Posted on 12/23/2019 by azsec

Microsoft recently released a public preview of a new capability in Azure allowing to sign in to Windows virtual machine using Azure AD account. Previously you would need several steps to complete the deployment of joining your virtual machine to … Continue reading

Posted in Identity & Access Control | Tagged , | 2 Comments

A few ways to acquire Azure access token with scripting languages

Posted on 12/20/2019 by azsec

Whether you are a sysadmin, DevOps guy, Blue/Red team your work will likely require to acquire Azure access token to work with Azure resources via Azure REST API. Moreover, not all things can be done with compiled command packages like … Continue reading

Posted in Security Automation | Tagged , | 2 Comments

Security Monitoring and Detection Tips for your Storage Account – Part 3

Posted on 12/20/2019 by azsec

In previous article you learned about different ways to collect Azure Storage account logs. You also learned about a model of centralizing Storage account log. No matter how you want to build, your storage account log should be ready for  … Continue reading

Posted in Monitoring & Detection | Tagged , | 4 Comments