Microsoft Azure Security covers the latest security features provided by Microsoft to identify different threats and protect your Azure cloud using innovative techniques. Cloud computing brings new security challenges, but you can overcome these with Microsoft Azure’s shared responsibility model. Azure cloud uses innovative techniques. This guide takes you through the built-in security controls and the multi-layered security features offered by Azure to protect cloud workloads across apps and networks. You’ll get to grips with using Azure Security Center for unified security management, building secure application gateways on Azure, protecting the cloud from DDoS attacks, safeguarding with Azure Key Vault, and much more.

Skills Covered
• Manage identity and access (30-35%)
• Implement platform protection (15-20%)
• Manage security operations (25-30%)
• Secure data and applications (20-25%)

Certification Name & Exam Code
Microsoft Certified: Azure Security Engineer Associate
Microsoft Azure Security AZ-500

Click to download

List of Awesome macOS Red Teaming Resources.

As more and more companies begin to adopt macOS as a daily office solution, we often encounter macOS operating system during our Pentest/Red Teaming process. How to hacking macOS, how to achieve Persistence under macOS, and using this as a starting point Lateral Movement to DC is a topic worth research.

This list is for anyone who wants to learn about Red Teaming for macOS but has no starting point.

You can help by sending Pull Requests to add more information.

Click to download

WHAT’S THE DIFFERENCE?

The threat level has never been higher for organizations charged with protecting valuable data. In fact, as recent headlines will attest, no company or agency is completely immune to targeted attacks by persistent, skilled adversaries.

The unprecedented success of these attacks against large and well-equipped organizations around the world has led many security executives to question the efficacy of traditional layered defenses as their primary protection against targeted attacks.

At the same time, many organizations have begun reviewing and revising their security best practices in advance of suffering a debilitating cyber attack. Based on extensive use of CrowdStrike’s next-generation endpoint protection platform to detect and prevent sophisticated attacks against large organizations, CrowdStrike’s in-house team of security experts, adversary hunters, intelligence analysts and incident responders have pooled their knowledge to produce this valuable guidebook and checklist for proactively enhancing your corporate information security procedures while avoiding common mistakes and pitfalls.

Click to download

As the Federal Government continues to adopt increasingly cutting-edge technologies and embrace large changes to existing Information Technology (IT) infrastructure, containers have become a growing topic of discussion throughout agencies. Some agencies already have budding containerization practices, other agencies are in the process of preparing for and building container capabilities and skills, and still others are early in the maturation process.

This guide provides a basic overview of container technologies to educate agencies that have limited to no containerization maturity. It will help agencies make informed and intelligent decisions on adopting container technologies. Intended as a “Container Readiness Guide,” the reader will first find an overview of container technology and references to external resources for additional learning to set a baseline of terms, definitions, and types of technologies.

Click to download

I.T. security professionals in recent years have looked at various Microsoft Azure services and components (like Log Analytics, Azure Security Center, and Azure Monitor) and asked: ‘Does Microsoft have a SIEM, because it seems like all those pieces add up to one?’ The answer has been that Microsoft cloud monitoring products were designed to provide input to customer SIEMs. This made sense because every large enterprise has a SIEM or SIEM-equivalent with often a high investment in a particular SIEM vendor or open source technology.

Limitless cloud speed and scale

Invest in security, not infrastructure setup and maintenance, with the first cloud-native SIEM from a major cloud provider. Never let a storage limit or a query limit prevent you from protecting your enterprise. Start using Microsoft Sentinel immediately, automatically scale to meet your organisational needs and pay for only the resources you need. As a cloud-native SIEM, Microsoft Sentinel is 48 percent less expensive and 67 percent faster to deploy than legacy on-premises SIEMs.

Click to download