Robbe Van den Daele (@robbevddaele) 's Twitter Profile
Robbe Van den Daele

@robbevddaele

ID: 744187386121297920

linkhttps://hybridbrothers.com/ calendar_today18-06-2016 15:17:54

47 Tweet

112 Followers

123 Following

MC2MC (@mc2mcbe) 's Twitter Profile Photo

Second session of this evening is in our recently introduced Rocket Talk format. Topic is on the journey with Azure local, presented by Olivier Debonne 🇧🇪 (❤️ Taiwan 🇹🇼). #Community #Microsoft #Cloud #Azure

Second session of this evening is in our recently introduced Rocket Talk format. 

Topic is on the journey with Azure local, presented by <a href="/olivierdebonne/">Olivier Debonne 🇧🇪 (❤️ Taiwan 🇹🇼)</a>.

#Community #Microsoft #Cloud #Azure
Robbe Van den Daele (@robbevddaele) 's Twitter Profile Photo

Interested in how I parse #CEF syslog messages from network security appliances to the CommonSecurityLog table in #MicrosoftSentinel without using AMA? Read my latest blog post at: hybridbrothers.com/parsing-cef-me… #Microsoft #MicrosoftSecurity

MC2MC (@mc2mcbe) 's Twitter Profile Photo

🚨 FINAL BOARDING CALL! 🚨 The MC2MC Connect ticket sale is almost complete, only a few tickets left! 🎟️ Don’t miss your chance to secure your seat for our first full-day event! 🚀 🔗 connect.mc2mc.be/tickets/ #MC2MC #ConnectMC2MC #Connect #Collaborate #Create

🚨 FINAL BOARDING CALL! 🚨

The MC2MC Connect ticket sale is almost complete, only a few tickets left!

🎟️ Don’t miss your chance to secure your seat for our first full-day event! 🚀

🔗 connect.mc2mc.be/tickets/

#MC2MC #ConnectMC2MC #Connect #Collaborate #Create
Florian Roth ⚡️ (@cyb3rops) 's Twitter Profile Photo

I’ve trained many analysts over the years - inside my own teams, in SOCs, CERTs, and various internal security teams. And lately, I’ve been noticing a trend that deeply saddens me. There’s an increasing number of young professionals who struggle with the grind of our work. They

ᴍɪᴄʜᴀʟɪs ᴍɪᴄʜᴀʟᴏs (@cyb3rmik3) 's Twitter Profile Photo

Another great newsletter of Kusto Insights curated by Ugur Koc and Bert-Jan 🛡️! Awesome highlighted #KQL query by Robbe Van den Daele. 🔗 kustoinsights.substack.com/p/kusto-insigh… #MicrosoftSecurity #MicrosoftDefender #MicrosoftSentinel #KustoQuery

Robbe Van den Daele (@robbevddaele) 's Twitter Profile Photo

Do not forget to tag the Exchange Trusted Subsystem, Exchange Windows Permission, and Organization Management groups as sensitive in #MDI if you have on-premise exchange without the split permission model. These groups are not tagged as sensitive by default by MDI.

Do not forget to tag the Exchange Trusted Subsystem, Exchange Windows Permission, and Organization Management groups as sensitive in #MDI if you have on-premise exchange without the split permission model. These groups are not tagged as sensitive by default by MDI.
Robbe Van den Daele (@robbevddaele) 's Twitter Profile Photo

🛡️Detecting non-privileged Windows Hello abuse: hybridbrothers.com/detecting-non-… #EntraID #KQL #Microsoft #MicrosoftSecurity #DefenderXDR #MicrosoftSentinel

Robbe Van den Daele (@robbevddaele) 's Twitter Profile Photo

Hunting for privilege escalation paths with AD ACLs using #DefenderXDR. github.com/HybridBrothers… #Microsoft #MicrosoftSecurity #Kusto #KQL

Hunting for privilege escalation paths with AD ACLs using #DefenderXDR.

github.com/HybridBrothers…

#Microsoft #MicrosoftSecurity #Kusto #KQL
Fabian Bader (@fabian_bader) 's Twitter Profile Photo

One of the results of the joined research with Dirk-jan is entrascopes.com Basically the yellow pages for Microsoft first party apps. #TROOPERS25

One of the results of the joined research with <a href="/_dirkjan/">Dirk-jan</a> is entrascopes.com 

Basically the yellow pages for Microsoft first party apps. 

#TROOPERS25
Robbe Van den Daele (@robbevddaele) 's Twitter Profile Photo

Learn from the practical challenges I encountered when trying to transition from #Microsoft #Sentinel to #DefenderXDR in my latest blogpost: hybridbrothers.com/transition-fro… #MicrosoftSecurity #SIEM #XDR

Dirk-jan (@_dirkjan) 's Twitter Profile Photo

How not to do multi-tenant apps. Nice find by from modzero, compromising Synology Active Backup client secrets (from the Synology tenant) during installation 🤦 modzero.com/en/blog/when-b…

Robbe Van den Daele (@robbevddaele) 's Twitter Profile Photo

New #maester test MT.1061: Device registration MFA control conflicts with Conditional Access policies. An important nuance in #entraid which is often overlooked. With the new Maester test you can get notified if you have a conflict.

New #maester test MT.1061: Device registration MFA control conflicts with Conditional Access policies.

An important nuance in #entraid which is often overlooked. With the new Maester test you can get notified if you have a conflict.
Robbe Van den Daele (@robbevddaele) 's Twitter Profile Photo

🔎 Detect Direct Send phishing emails Below you can find a query that can help you find phishing emails being send using #Microsoft Exchange Direct Send. #Kusto #KQL #DefenderXDR #MicrosoftSentinel github.com/HybridBrothers…

🔎 Detect Direct Send phishing emails

Below you can find a query that can help you find phishing emails being send using #Microsoft Exchange Direct Send. 

#Kusto #KQL #DefenderXDR #MicrosoftSentinel

github.com/HybridBrothers…