In this episode...

* Chris revisits his e-mail authentication and security from last time to dig a little deeper.

* Koos recently did some talks about SIEM migrations to Sentinel and keeping things as cost-efficient as possible. He also believes a company shouldn't focus solely on Microsoft Sentinel, and should consider looking into alternatives alongside it like Azure Data Explorer. And why are companies so focussed on collecting all those logs in a "legacy" matter?

Full show notes available on our blog:

https://df3ndr.io/episodes/2025/03/01/01x04_REauthmail-and-siem_kql.html

Follow us on your favorite podcast platform or check us out at https://df3ndr.io