Announcements

This site now runs on Hugo

After many years running Wordpress, I decided to switch my personal site to something more lightweight.

PowerShell Azure Office 365

Get the AzureAD Audit Sign-In Logs

Here is one PowerShell approach that I created for that

PowerShell

PowerShell helper script to investigate Exchange Servers for a Hafnium attack

Here is a small helper that can support you doing that

PowerShell Office 365

Find out who deleted messages in an Exchange Online Mailbox

This week I came across the typical question "who deleted that message in this shared Mailbox"

HowTo

Windows Defender Firewall Logs with Filebeat

Ship plain logfiles to Graylog? Yes, with Filebeat!

HowTo

Ship Windows event logs with Winlogbeat

How I switched from NXLog to Winlogbeat for event log shipping

HowTo

Graylog behind a NGINX Reverse Proxy: API Exposed

How I exposed the Graylog behind a NGINX Reverse Proxy

PowerShell Office 365

Baseline ruleset of Office 365 Protection Alert’s

Here is a collection of a good practice ruleset of Office 365 Protection Alert's.

PowerShell Office 365

Baseline ruleset of Office 365 Activity Alert’s

Here is a collection of a good practice ruleset of Office 365 Activity Alert's.

News

Changes to the Source Code published here

I now use plain Markdown publishing!