seick
@seick.it
Security Engineer | custos nubium
#Security #Azure #EntraID #KQL #ConditionalAccess #ActiveDirectory #MDE and a little bit of #macOS
#Security #Azure #EntraID #KQL #ConditionalAccess #ActiveDirectory #MDE and a little bit of #macOS
Reposted by seick
One the craziest elements about cybersecurity is you have half the industry sat worrying about cyberwar!1! and going on about quantum and AI, then you have you have the operational reality of what is actually happening on the ground - it bares no resemblance, at all, to what people are focused on.
October 1, 2025 at 3:21 PM
One the craziest elements about cybersecurity is you have half the industry sat worrying about cyberwar!1! and going on about quantum and AI, then you have you have the operational reality of what is actually happening on the ground - it bares no resemblance, at all, to what people are focused on.
Reposted by seick
You can now define, with granularity, which of your Microsoft Teams users can receive messages from external senders.
I waited for this feature for a long while and was a bit too enthusiastic when I heard about it :). Wrote up my thoughts about this here:
www.thinformatics.com/blog/manage-...
I waited for this feature for a long while and was a bit too enthusiastic when I heard about it :). Wrote up my thoughts about this here:
www.thinformatics.com/blog/manage-...
Manage external Communications in Teams — thinformatics
Hey Teams Admins! once in a month, a colleague at thinformatics organizes a “What’s new” Session where all co-workers can and should share news round about M365, Entra and Azure. This is one tool we’...
www.thinformatics.com
September 18, 2025 at 4:36 PM
You can now define, with granularity, which of your Microsoft Teams users can receive messages from external senders.
I waited for this feature for a long while and was a bit too enthusiastic when I heard about it :). Wrote up my thoughts about this here:
www.thinformatics.com/blog/manage-...
I waited for this feature for a long while and was a bit too enthusiastic when I heard about it :). Wrote up my thoughts about this here:
www.thinformatics.com/blog/manage-...
"you'll spend more time fighting your own company than actual hackers. devs hate you for slowing them down. management hates you for costing money. users hate you for making passwords hard. you're basically professional party pooper."
there is my new job title... professional party pooper
there is my new job title... professional party pooper
Day to day as a Cybersecurity Engineer: what’s the reality?
Day to day as a Cybersecurity Engineer: what’s the reality?
Hi everyone,
I’m looking for the real view from people actually doing the work.
What does a normal week look like?
Which systems/tools dominate your time? (SIEM, XDR, threat intel, incident resp...
reddit.com
August 6, 2025 at 1:59 PM
"you'll spend more time fighting your own company than actual hackers. devs hate you for slowing them down. management hates you for costing money. users hate you for making passwords hard. you're basically professional party pooper."
there is my new job title... professional party pooper
there is my new job title... professional party pooper
Reposted by seick
Unfortunately, that was only a matter of time!
This video combines two of the most dangerous tools at the moment associated with phishing - and it's surprisingly simple!
www.youtube.com/watch?v=Dp1z...
Do we have defense options? Read on 👇
This video combines two of the most dangerous tools at the moment associated with phishing - and it's surprisingly simple!
www.youtube.com/watch?v=Dp1z...
Do we have defense options? Read on 👇
TokenSmith Meets Evilginx: Token Theft Combined with Entra Conditional Access Bypass
YouTube video by SYNACK Time
www.youtube.com
January 17, 2025 at 7:21 AM
Unfortunately, that was only a matter of time!
This video combines two of the most dangerous tools at the moment associated with phishing - and it's surprisingly simple!
www.youtube.com/watch?v=Dp1z...
Do we have defense options? Read on 👇
This video combines two of the most dangerous tools at the moment associated with phishing - and it's surprisingly simple!
www.youtube.com/watch?v=Dp1z...
Do we have defense options? Read on 👇
All you need to know about the TokenSmith Compliant Device Bypass ->
January 14, 2025 at 5:03 PM
All you need to know about the TokenSmith Compliant Device Bypass ->
Reposted by seick
Fun part is, he held a presentation about this already in August but nobody seemed interested… www.youtube.com/watch?v=JItn...
Bypassing Entra ID Conditional Access Like APT: A Deep Dive Into Device Authentication Mechanisms
YouTube video by Black Hat
www.youtube.com
January 5, 2025 at 8:42 PM
Fun part is, he held a presentation about this already in August but nobody seemed interested… www.youtube.com/watch?v=JItn...
Everybody who has something to do with Conditional Access should read about TokenSmith and think about what this could do in combination with EvilGinx2 and what this could mean for your environment. #entraid #conditionalaccess
labs.jumpsec.com/tokensmith-b...
labs.jumpsec.com/tokensmith-b...
TokenSmith - Bypassing Intune Compliant Device Conditional Access | JUMPSEC LABS
Conditional Access Policies (CAPs) are the core of Entra ID’s perimeter defense for the vast majority of Enterprise Microsoft 365 (M365) and Azure environments. The core ideas of conditional access ar...
labs.jumpsec.com
January 2, 2025 at 2:19 PM
Everybody who has something to do with Conditional Access should read about TokenSmith and think about what this could do in combination with EvilGinx2 and what this could mean for your environment. #entraid #conditionalaccess
labs.jumpsec.com/tokensmith-b...
labs.jumpsec.com/tokensmith-b...
Fellow non-MSP #Entra security bubble! Without a dev tenant, I’m curious—how do you set up your personal Azure security test environments? What licenses do you use—Microsoft E5, Business Premium + EMS E5, or a mix? How many licenses for effective testing? Would love to hear your approach on this.
December 23, 2024 at 2:56 PM
Fellow non-MSP #Entra security bubble! Without a dev tenant, I’m curious—how do you set up your personal Azure security test environments? What licenses do you use—Microsoft E5, Business Premium + EMS E5, or a mix? How many licenses for effective testing? Would love to hear your approach on this.
Reposted by seick
Announcing GitHub Copilot Free!
We're excited to announce an all new free plan for GitHub Copilot, available for everyone today in VS Code.
No trial. No subscription. No credit card required.
Learn more at the link below 👇
aka.ms/copilot-free
We're excited to announce an all new free plan for GitHub Copilot, available for everyone today in VS Code.
No trial. No subscription. No credit card required.
Learn more at the link below 👇
aka.ms/copilot-free
Announcing a free GitHub Copilot for VS Code
Announcing a free plan for GitHub Copilot in Visual Studio Code.
aka.ms
December 19, 2024 at 8:48 AM
Announcing GitHub Copilot Free!
We're excited to announce an all new free plan for GitHub Copilot, available for everyone today in VS Code.
No trial. No subscription. No credit card required.
Learn more at the link below 👇
aka.ms/copilot-free
We're excited to announce an all new free plan for GitHub Copilot, available for everyone today in VS Code.
No trial. No subscription. No credit card required.
Learn more at the link below 👇
aka.ms/copilot-free
Great. My Azure developer tenant, which was working just fine a few weeks ago, apparently expired end of october.
No mail, no warning, nothing. All licenses, roles gone.
I often used this to test security-relevant features, as this was the easiest way for testing as enduser.
No mail, no warning, nothing. All licenses, roles gone.
I often used this to test security-relevant features, as this was the easiest way for testing as enduser.
December 2, 2024 at 8:45 PM
Great. My Azure developer tenant, which was working just fine a few weeks ago, apparently expired end of october.
No mail, no warning, nothing. All licenses, roles gone.
I often used this to test security-relevant features, as this was the easiest way for testing as enduser.
No mail, no warning, nothing. All licenses, roles gone.
I often used this to test security-relevant features, as this was the easiest way for testing as enduser.
Reposted by seick
Here's a useful tool for Bluesky
Type your account name in and it will show a list of the accounts followed by the people you follow..
bsky-follow-finder.theo.io
Type your account name in and it will show a list of the accounts followed by the people you follow..
bsky-follow-finder.theo.io
Bluesky Network Analyzer
Find accounts that you don't follow (yet) but are followed by lots of accounts that you do follow.
bsky-follow-finder.theo.io
November 17, 2024 at 9:10 PM
Here's a useful tool for Bluesky
Type your account name in and it will show a list of the accounts followed by the people you follow..
bsky-follow-finder.theo.io
Type your account name in and it will show a list of the accounts followed by the people you follow..
bsky-follow-finder.theo.io
Today I learned about "bag_unpack" in #KQL which unpacks a single column of type dynamic.
To me this looks so much easier than "extend" every property in a dynamic object. Is there a reason why this is not widely used. Am I missing something?
To me this looks so much easier than "extend" every property in a dynamic object. Is there a reason why this is not widely used. Am I missing something?
November 14, 2024 at 2:54 PM
Today I learned about "bag_unpack" in #KQL which unpacks a single column of type dynamic.
To me this looks so much easier than "extend" every property in a dynamic object. Is there a reason why this is not widely used. Am I missing something?
To me this looks so much easier than "extend" every property in a dynamic object. Is there a reason why this is not widely used. Am I missing something?
Hey, does anybody from the #microsoft bubble know if there is a way to buy godeploy labs as individual? Or is there another option to get similar labs?
November 12, 2024 at 3:27 PM
Hey, does anybody from the #microsoft bubble know if there is a way to buy godeploy labs as individual? Or is there another option to get similar labs?
Reposted by seick
Speaking of the utterly broken Twitter search (RIP), here are instructions for searching on Bluesky. It requires a little more from you, but once you know the prefixes, I've found the search works just fine. bsky.social/about/blog/0...
Tips and Tricks for Bluesky Search - Bluesky
Let’s dive into all the tips and tricks for advanced Bluesky search!
bsky.social
November 11, 2024 at 2:14 PM
Speaking of the utterly broken Twitter search (RIP), here are instructions for searching on Bluesky. It requires a little more from you, but once you know the prefixes, I've found the search works just fine. bsky.social/about/blog/0...
BlueHat 2024 - YouTube
BlueHat 2024 - Oct 29-30, 2024. Redmond, WA USA
m.youtube.com
November 11, 2024 at 2:06 PM
Want to improve your Bluesky experience? Have a look at this of all known tools available for the Bluesky platform:
github.com/fishttp/awes...
github.com/fishttp/awes...
GitHub - fishttp/awesome-bluesky: A list of all known tools available for the Bluesky platform
A list of all known tools available for the Bluesky platform - fishttp/awesome-bluesky
github.com
November 10, 2024 at 9:08 PM
Want to improve your Bluesky experience? Have a look at this of all known tools available for the Bluesky platform:
github.com/fishttp/awes...
github.com/fishttp/awes...
Reposted by seick
🦋 Introducing bluesky.ms 👏 = A crowdsourced database of anyone and everyone in the Microsoft community on Bluesky.
👉 Add yourself and anyone you know today 👈
🫂 All are welcome.
This is my v1, I'll add options to directly follow from the site itself but first 👇
LET'S FILL IT UP! 🙏
👉 Add yourself and anyone you know today 👈
🫂 All are welcome.
This is my v1, I'll add options to directly follow from the site itself but first 👇
LET'S FILL IT UP! 🙏
Search bluesky.ms
Use this page to search for the Microsoft community on bluesky.ms.
bluesky.ms
November 8, 2024 at 3:51 PM
🦋 Introducing bluesky.ms 👏 = A crowdsourced database of anyone and everyone in the Microsoft community on Bluesky.
👉 Add yourself and anyone you know today 👈
🫂 All are welcome.
This is my v1, I'll add options to directly follow from the site itself but first 👇
LET'S FILL IT UP! 🙏
👉 Add yourself and anyone you know today 👈
🫂 All are welcome.
This is my v1, I'll add options to directly follow from the site itself but first 👇
LET'S FILL IT UP! 🙏