Alfonso Greenbrook

icon indicating a website link https://alfonsogreenbrook.wixsite.com/portfolio

icon location London icon location Cyber Security Professional | SC-200 | GCFE | NCSP

Results 6 issues of Alfonso Greenbrook

Adding custom API plugin for Trellix Detection on Demand API

5 comment

This is an API custom plugin for the Trellix Detection on Demand API. Includes links to Trellix (FireEye) documentation.

MDE custom plugins

2 comment

Two new plugins that summarise SmartScreen and PnP events using the Defender for Endpoint tables.

MDA Custom Plugins

Two plugins that use the CloudAppEvents table to provide insights about user activity and files detected by ATP.

IOC Query Builder and ASR Custom Plugins

3 comment

Two custom plugins: 1. GPT - IOC query builder (just KQL for now, but scope to extend to other SIEM query languages). 2. KQL - Summary of ASR rules based...

Parser tools

1 comment

x3 data parsing tools: - User Agent Parser - URL Parser - File Path Parser

MDTI Promptbooks

1 comment

x2 plugins that utilise the Microsoft Threat Intelligence plugin - Domain Name Investigation - IP Address Investigation