We had a need to ingest Azure AD Sign-Ins to our Splunk environment to identify compromised accounts logging in from geographically improbable locations. We use Office365 for Outlook, OneDrive, SharePoint Online, Teams, etc. All of … Splunk and Azure AD Sign-InsRead more
Author: andrewtravis
CISSP Preparation & Exam
I recently ramped up study for my CISSP and just passed this week! In this post, I wanted to detail the resources I used to prepare for the test. Cybrary I used the Cybrary catalog … CISSP Preparation & ExamRead more
Palo Alto VM – Multiple IP Addresses for Public Servers
I struggled to figure out how to add multiple IP addresses on the outside of my Palo Alto VM-Series in AWS. I needed to place each server’s public IP address on the Palo Alto and … Palo Alto VM – Multiple IP Addresses for Public ServersRead more
Modern Honey Network & Raspberry Pi
I attended a talk years ago where Duke University was using a robust network of sensors managed via Modern Honey Network. It motivated me to reuse my old Raspberry Pi as a sensor, alerting on … Modern Honey Network & Raspberry PiRead more
Hello Lightsail. Hello WordPress.
In order to expand my experience in AWS and actually have a web presence for my domain, I have deployed a Lightsail WordPress Instance, given it a static IP address, Updated DNS and given it … Hello Lightsail. Hello WordPress.Read more