A Blog about Cloud and Application Security
-
Provision a Virtual Machine in Azure using Python
A couple weeks ago I demonstrated how you could deploy a Python application to Azure App Services but other than application development, what else can you do with Python in Azure? Over the next couple weeks I’ll look at some of the different ways Python can be used in Azure from Serverless to Machine Learning.…
-
Deploy your first Go Application to Azure App Service
In my last blog post I demonstrated how you can deploy a Python Flask application from GitHub to Azure App Service, but what if your application isn’t written in a language or framework with first class support in Azure App Service? In this post I’ll demonstrate how you can deploy a simple Go application from…
-
Deploy your first Python Flask application to Azure App Service
Azure App Service is one of my favorite Azure Services! It enables you to host web applications, mobile back ends, and RESTful APIs using the programming language of your choice without managing the infrastructure behind it. It provides auto-scaling and high availability, supports Windows and Linux, and enables automated deployments from any Git repo or…
-
Threat Hunting with Azure Sentinel
Traditionally, threat hunting has been a manual process in which security team members proactively search and analyze various data sources to detect and isolate potential threats. Azure Sentinel provides powerful search and query tools to proactively hunt for security threats across an organization’s data sources, helping you look for new anomalies that weren’t detected by…
-
Getting Started with Azure Sentinel: Part 2
In my previous blog post, I covered getting started with Azure Sentinel, including how to configure and connect it to a data source. This week I want to talk about the Kusto Query Language (KQL), Azure Workbooks and Playbooks. Let’s get started with KQL. Kusto Query Language The Kusto Query Language (KQL) is a read-only…
-
Getting started with Azure Sentinel: Part 1
Security is critical for organizations of all sizes and being able to have visibility across all systems, devices and applications is becoming more important everyday. Azure Sentinel provides a single solution for threat detection, alerting, security analytics and response management across devices, applications and other cloud providers. How Does Azure Sentinel work? Azure Sentinel collects…
-
Creating a Custom Virtual Machine Image in Azure
Recently I needed to create a custom virtual machine (VM) image in Azure. The Azure Marketplace offers many different templates for operating system (OS) deployments, but sometimes there are situations where you may want to create your own custom image with specific changes to the OS or VM. In this blog post, I will demonstrate…
-
Passing the HashiCorp Certified Terraform Associate Exam
Last weekend I passed the Hashicorp Certified Terraform Associate exam. The exam is part of HashiCorp’s Cloud Engineer Certification program, which includes Terraform, Vault and Consul certifications. The exam is comprised of approximately 50-60 questions and is proctored online with a one-hour time limit to complete the exam. Exam Objectives Listed below are the exam…
-
Learning Terraform – Part 4: State Management
This post is a continuation of my series of blog posts on learning Terraform. In my previous post I discussed provisioners and modules. In this post, I want to look at Terraform state and password management. State Management Terraform records information about the infrastructure created in a Terraform state file (terraform.tfstate). This file uses JSON to map…
-
Learning Terraform – Part 3: Provisioners and Modules
This post is a continuation of my series of blog posts on learning Terraform. In my previous post I covered variables, count, conditional expressions and functions. In this post, I want to look at provisioners and modules. Provisioners Provisioners are used to execute scripts or actions on a local or remote machine as part of the resource construction or destruction process. …