In this article, I’ll be your guide through the process of setting up syslog forwarding from a SonicWALL firewall to a Wazuh SIEM, finely tuning the system… Read more “Blue Team Series, Part 1: Forwarding, Fine-Tuning, and Visualizing Syslog from SonicWALL to Wazuh”
Why Azure Files Fails for Cloud-Only Identities: DNS, VPNs, and Entra Kerberos Explained
Introduction At Microsoft Ignite 2025, several long-awaited features were announced. One clear trend is the shift toward cloud-only identities, which are increasingly important for remote workforces. SMB… Read more “Why Azure Files Fails for Cloud-Only Identities: DNS, VPNs, and Entra Kerberos Explained”
Why TP-Link ER605 IPSec S2S VPNs Fail with Azure (and How to Fix Them)
Introduction TP-Link is cheap and affordable, and their Omada software defined networking (SDN) makes things easy. This makes it attractive to SMBs and home users. But TP-Link’s… Read more “Why TP-Link ER605 IPSec S2S VPNs Fail with Azure (and How to Fix Them)”
Azure VPN Gateway Basic SKU Site-to-Site VPN with Dynamic Public IPs (DDNS & DNS Guide)
Introduction Azure VPN Gateway (AZVPNGW) Basic SKUs are only deployable with the Basic SKU Public IP Addresses (PIP). Basic SKU PIPs are dynamic and cannot be static,… Read more “Azure VPN Gateway Basic SKU Site-to-Site VPN with Dynamic Public IPs (DDNS & DNS Guide)”
Azure VPN Gateway Basic SKU: Step-by-Step Setup + Troubleshooting
Introduction Azure VPN Gateway (AZVPNGW) Basic SKU’s must be deployed using Azure CLI. You cannot use the Azure Portal UI to deploy this SKU. AZVPNGW Basic SKU… Read more “Azure VPN Gateway Basic SKU: Step-by-Step Setup + Troubleshooting”
How to Onboard Devices into Microsoft Defender for Endpoint (MDE) + A Deep Dive into Its Features
Introduction Microsoft Defender for Endpoint (MDE) has become one of the most powerful tools in modern endpoint protection. Not only does it provide enterprise-grade antivirus, EDR (Endpoint… Read more “How to Onboard Devices into Microsoft Defender for Endpoint (MDE) + A Deep Dive into Its Features”
Hybrid Entra ID Join & Intune: Step-by-Step Setup + Troubleshooting
Back in October 2024, I spent some time in my homelab testing and refining the process of enrolling domain-joined Windows PCs into Microsoft Intune while setting up… Read more “Hybrid Entra ID Join & Intune: Step-by-Step Setup + Troubleshooting”
Blue Team Series, Part 2: Microsoft Conditional Access
Microsoft’s platforms are often at the forefront of both innovation and scrutiny. New vulnerabilities, such as Remote Code Execution (RCE) flaws in Windows, continue to surface, and… Read more “Blue Team Series, Part 2: Microsoft Conditional Access”
PowerShell Playground
Upon entering the workforce, I quickly realized the power of automation and speed in IT administration. Despite limited exposure to PowerShell during my studies, I seized the… Read more “PowerShell Playground”
Wazuh: The Ultimate Guardian of My Home Network
With a rapid changing field of cyber threats, safeguarding your home network is paramount. For me, the answer lies in Wazuh, an Open-Source Security Information and Event… Read more “Wazuh: The Ultimate Guardian of My Home Network”
Kohanik Secure 