Alex Verboon's Avatar

Alex Verboon

@vacyber.bsky.social

CTO Principal Cyber Security Consultant at @BaseVISION | building cyber defenses to protect the enterprise | Microsoft security MVP | Host of http://KQLCafe.com

264 Followers  |  103 Following  |  12 Posts  |  Joined: 11.11.2024  |  1.8518

Latest posts by vacyber.bsky.social on Bluesky

KustoCon 2025
YouTube video by KQL Cafe KustoCon 2025

Countdown to #KustoCon

youtu.be/VQI9WgG--Xs?...

19.10.2025 08:09 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Sessions | KustoConEvent Timetable

πŸŽ‰ KustoCon 2025 is official!

Watch the announcement video and register now for the main event or join us onsite in Zurich for also the hands-on detection engineering workshop!

Info & sign-up: kustocon.com/sessions/

#KustoCon #KQL #KustoFans

02.06.2025 21:25 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Website looks great and I enjoyed the podcast πŸ‘

05.04.2025 20:56 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0
Post image

Use #KQL to identify the use of Portable Apps across your #DefenderforEndpoint devices

github.com/alexverboon/...

05.04.2025 15:06 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Defender Resource Hub Update - Spring 2025
defenderresourcehub.info

#MicrosoftSecurity #DefenderXDR #ITDR #EntraID #MicrosoftSentinel #Defenders

05.04.2025 14:16 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
KQL Cafe If you'd like to share your query with the community, feel free to share it via kqlsearch.com Submit Query

Interested to learn more about Azure Fabric? Join us at the KQLCafe tomorrow Tuesday February 25, 18:00 CET with guest speaker Uri Barash

More information and registration here: kqlcafe.com#upcoming-shows

#kql #AzureFabric #Kusto

24.02.2025 19:13 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

[Tip!] Still running MMA for Defender for Endpoint on older Windows Servers/Clients? Not sure? Then check out these queries:

github.com/alexverboon/...

#DefenderForEndpoint #Security #StayCurrent

05.02.2025 21:48 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

Defender Resource Hub Update - Winter 2025
defenderresourcehub.info

#Security #Learn #StayUptodate #Defenders #MicrosoftSecurity

26.01.2025 13:39 β€” πŸ‘ 3    πŸ” 2    πŸ’¬ 1    πŸ“Œ 0

My previous MCAS Toolbox was last updated in 2021, and meanwhile we have new APIs so here' a first updated set of PowerShell scripts to manage Defender for Cloud Apps github.com/alexverboon/De…
#mcas #powershell #mvpubzz #Security

25.01.2025 22:13 β€” πŸ‘ 6    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0

[New KQL Query] Detect changes to Microsoft Entra ID Self Service Password Reset configuration settings

github.com/alexverboon/...

#KQL #EntraID #SSPR #mvpbuzz

22.01.2025 19:58 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0

Microsoft is retiring the MFA Fraud alert in favor of the replacement feature "Report Suspicious Activity" here's a KQL query to detect these events.
github.com/alexverboon/...

#KQL #EntraID #mvpbuzz #MFA

22.01.2025 19:58 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Use the below queries to list all Azure DevOps Code and Infrastructure as code recommendations.

Use the below queries to list all Azure DevOps Code and Infrastructure as code recommendations.

Get all Azure DevOps Security Code & Infrastructure as code recommendations with #KQL
github.com/alexverboon/...
#kql #AzureDevOpsSecurity #CodeAnalysis

09.12.2024 20:01 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

Hello #KQL Fans & Geeks,

We are taking a short break, but we'll be back in January 2025. Check out our lineup of guest speakers here: kqlcafe.com#our-mission

And in case you missed it, the KustoCon Conference session recordings are available now. kqlcafe.com/KustoCon/Kus...

02.12.2024 23:15 β€” πŸ‘ 5    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
LinkedIn This link will take you to a page that’s not on LinkedIn

πŸš€ Relive KustoCon 2024! 🧠🌐 Our 6 expert-led sessions are now available for you to watch on-demand. Dive into the latest KQL insights from top community experts. πŸ“Ή

πŸ‘‰ Watch here: lnkd.in/edeRJQtd

26.11.2024 18:48 β€” πŸ‘ 1    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0

Today I created a few KQL queries to detect AzureDevOps - Organization Settings changes.

github.com/alexverboon/...

#KQL #AzureDevOps #Security #Sentinel

18.11.2024 21:54 β€” πŸ‘ 10    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0

@vacyber is following 20 prominent accounts