Monthly Archives: December 2019

Azure Sentinel ARM Template

Posted on 12/31/2019 by azsec

I got a question from some readers asking about if there is a way to deploy Azure Sentinel through Azure ARM template and what are common use cases for deploying such an ARM template. In this article, let’s explore the … Continue reading →

Posted in Security Automation | Tagged azure sentinel, azure sentinel arm | 3 Comments

Security Monitoring and Detection Tips for your Storage Account – Part 4

Posted on 12/31/2019 by azsec

In part 3, you were introduced some storage account related alerts that are generated by Azure Security Center -Advanced Threat Protection. You also got to know a few ways to manually generate those alerts so you could look into how … Continue reading →

Posted in Monitoring & Detection | Tagged azure storage attack, azure storage security | Leave a comment

Deploy Azure Security Center Blueprint

Posted on 12/30/2019 by azsec

A few readers after reading this article about Azure Security Center ARM template asked me if they could include Azure Security Center ARM template to their Azure Blueprint so they could deploy it widely along with other artifacts. In this … Continue reading →

Posted in Governance & Compliance | Tagged azure blueprint, azure security center blueprint | 2 Comments

Azure Security Center ARM Template

Posted on 12/30/2019 by azsec

I got a question from a reader asking if there is any ARM template for Azure Security Center and what are common use cases for such an ARM template. In this article, let’s explore the ARM template for Azure Security … Continue reading →

Posted in Azure Security Center, Security Automation | Tagged azure security center arm template | 4 Comments

Azure Disk Encryption ARM template for Windows VM

Posted on 12/28/2019 by azsec

I had an article about a healthy Windows virtual machine in Azure and got a feedback that the virtual machine should have disk encryption in place. That feedback is very valuable and it drove me to do more research and … Continue reading →

Posted in Secure Development | Tagged azure disk encryption, disk encryption extension | 1 Comment

Deploy a healthy development Windows virtual machine

Posted on 12/27/2019 by azsec

Recently a developer asked me about what would be considered a healthy virtual machine for development as he wanted to deploy a virtual machine on Microsoft Azure after his personal laptop was slow and didn’t work stably. In this article, … Continue reading →

Posted in Security Automation | Tagged azure bastion, azure vm compliance | Leave a comment

Query your virtual machine with Azure Resource Graph

Posted on 12/25/2019 by azsec

I got a question from a friend if he could extract some common information about Azure virtual machines that he could send to his manager as a report without any use of scripting language like PowerShell. Given the fact that … Continue reading →

Posted in Security Automation | Tagged azure resource graph, azure virtual machine | Leave a comment

Azure ARM Template for VM Creation with AAD Sign-in

Posted on 12/23/2019 by azsec

Microsoft recently released a public preview of a new capability in Azure allowing to sign in to Windows virtual machine using Azure AD account. Previously you would need several steps to complete the deployment of joining your virtual machine to … Continue reading →

Posted in Identity & Access Control | Tagged azure ad, azure vm aad | 1 Comment

A few ways to acquire Azure access token with scripting languages

Posted on 12/20/2019 by azsec

Whether you are a sysadmin, DevOps guy, Blue/Red team your work will likely require to acquire Azure access token to work with Azure resources via Azure REST API. Moreover, not all things can be done with compiled command packages like … Continue reading →

Posted in Security Automation | Tagged azure access token, azure devops | 1 Comment

Security Monitoring and Detection Tips for your Storage Account – Part 3