Lets Automate It

from Josh Rickard

Automate Employee Off Boarding Process With Swimlane

2019-05-08 swimlane Josh Rickard
As more organizations discontinue internal services and begin adopting an increasing number of third-party *aaS-based services, ensuring the appropriate access is revoked in a timely manner is critical. By using our new employee off-boarding use case, you can automatically gather historical data, add a user to a monitoring watch list, and finally remove access when it is time to off-board an employee. The employee off-boarding use case contains two distinct applications to assist an organization with managing their employee off-boarding process. Continue reading

Microsoft OAuth2 Part3: Using Microsoft Graph API

2019-05-08 swimlane Josh Rickard
In this third and final part of the “Understanding Microsoft’s OAuth2 Implementation” series, we will be using the application that we have previously created to authenticate to the Microsoft Graph API. If you have not done so, please read Part 1 and Part 2 before continuing. Now, let’s start using the Microsoft Graph API using PowerShell Core! Read More

Microsoft OAuth2 Part2: Registering an App

2019-04-18 swimlane Josh Rickard
In my last post, I explained the different API endpoints available for authentication using Microsoft’s OAuth2. Additionally, I shared the different types of applications and their authentication flows. In Part 2, I will discuss how to create and register a new application with a deeper understanding of the permissions needed when interacting with the Microsoft Graph API. Read More

Swimlane Runner Up in Microsoft Graph Security Hackathon

2019-04-02 swimlane Josh Rickard
Within a few weeks of starting at Swimlane, our CEO Cody Cornell mentioned the Microsoft Graph Security Hackathon — put on by the Microsoft Graph Security team and DevPost. After assembling a team and a lot of hard work, we were notified yesterday that our submission earned runner up! We were extremely excited to participate in this unique event as we were about to begin our development of our Microsoft Graph Security API bundle, and this would be the perfect opportunity for us to showcase the power of Swimlane. Continue reading

Microsoft's OAuth2 Part 1: Endpoints and Application Types

2019-03-27 swimlane Josh Rickard
As an information security or IT professional, understanding the concepts around Microsoft OAuth 2.0 or OpenID Connect authentication can be daunting. There are thousands of pages of documentation, and if you want to interact with a Microsoft Cloud service—like Microsoft Graph—it can be a minefield of information. In this three-part series, I am going to share with you my insights on Microsoft’s OAuth2 Implementation in hopes that it will help your organization understand and use OAuth2 when using Microsoft cloud-based services. Continue reading

Automated Malware Analysis and Reverse Engineering With Soar

2019-03-14 swimlane Josh Rickard
We all know that security operations (SecOps) teams are overwhelmed by the extreme number of alerts they receive on a daily basis. Organizations are being attacked from all fronts, whether they know it or not. These attacks vary from social engineering, malicious emails, vulnerable services and applications, misconfiguration (job fatigue), etc. Traditionally in a security operations center (SOC), malware analysis—more specifically reverse engineering—is conducted by a highly trained member of the security team (depending on your size, this may be multiple individuals). Continue reading
Newer posts