├── Certifications.md
├── DefenderXDR.md
├── M365IncidentResponse.md
├── MDE.md
├── MicrosoftSentinel.md
├── README.md
├── PurviewCompliance.md
├── MVP.md
├── AzureSecurity.md
└── KQL.md


/Certifications.md:
--------------------------------------------------------------------------------
1 | <h1>Certifications</h1>
2 | 
3 | [SC-900 Microsoft Certified: Security, Compliance, and Identity Fundamentals](https://learn.microsoft.com/en-us/credentials/certifications/security-compliance-and-identity-fundamentals)


--------------------------------------------------------------------------------
/DefenderXDR.md:
--------------------------------------------------------------------------------
1 | <h1>Microsoft Defender XDR</h1>
2 | 
3 | 1. [SC-200 Microsoft Certified: Security Operations Analyst Associate Certification](https://learn.microsoft.com/en-us/credentials/certifications/security-operations-analyst) | [My tips & advice](https://www.linkedin.com/feed/update/urn:li:activity:7150047254576336896/)
4 | 2. [Defend against cyberthreats with Microsoft Defender XDR - Applied Skill](https://learn.microsoft.com/api/credentials/share/en-gb/PuravD-9957/DB92EDC3A755353A?sharingId=MVP_388101) | [LinkedIn post](https://www.linkedin.com/feed/update/urn:li:activity:7276891791402930177/)
5 | 


--------------------------------------------------------------------------------
/M365IncidentResponse.md:
--------------------------------------------------------------------------------
1 | <h1>Microsoft 365 (M365) Incident Response</h1>
2 | 
3 | *Thanks to [Gaurav Khatri](https://www.linkedin.com/in/gauraverse/) for inspiring this page from him asking me about resources to help with M365 Incident Response on 07/11/24*
4 | 
5 | 1. [Day in the life of an Incident Responder](https://www.linkedin.com/feed/update/urn:li:activity:7163601846622748672/) | [Microsoft Security Insights Show Episode 187](https://youtu.be/IgzdBDPe0hU)
6 | 2. [Cloud Security Today Season 4 Episode 10](https://www.cloudsecuritytoday.com/1723279/15505088-microsoft-365-incident-response)
7 | 3. [Microsoft Incident Response Ninja Hub](https://aka.ms/MicrosoftIRNinjaHub)
8 | 


--------------------------------------------------------------------------------
/MDE.md:
--------------------------------------------------------------------------------
 1 | <h1>Microsoft Defender for Endpoint (MDE)</h1>
 2 | 
 3 | *Thanks to [Arvind Thakur](https://www.linkedin.com/in/arvind-thakur-a5331b66/) for inspiring this page from him asking me about resources to help with MDE on 16/10/24*
 4 | 
 5 | 1. [SC-200 Microsoft Certified: Security Operations Analyst Associate Certification](https://learn.microsoft.com/en-us/credentials/certifications/security-operations-analyst) | [My tips & advice](https://www.linkedin.com/feed/update/urn:li:activity:7150047254576336896/)
 6 | 2. [Ultimate MDE Blog Series by Jeffrey Appel](https://jeffreyappel.nl/microsoft-defender-for-endpoint-the-ultimate-blog-series-for-windows-intro/)
 7 | 3. [Sharing insight at Microsoft Secure](https://www.linkedin.com/feed/update/urn:li:activity:7049428053566869505/)
 8 | 4. [MDE book from Packt](https://www.linkedin.com/feed/update/urn:li:activity:7037479829776039937/)
 9 | 5. [Defend against cyberthreats with Microsoft Defender XDR - Applied Skill](https://learn.microsoft.com/api/credentials/share/en-gb/PuravD-9957/DB92EDC3A755353A?sharingId=MVP_388101) | [LinkedIn post](https://www.linkedin.com/feed/update/urn:li:activity:7276891791402930177/)
10 | 


--------------------------------------------------------------------------------
/MicrosoftSentinel.md:
--------------------------------------------------------------------------------
 1 | <h1>Microsoft Sentinel</h1>
 2 | 
 3 | *Thanks to [Nirmal Unagar](https://www.linkedin.com/in/nirmalunagar/) for inspiring this page from him asking me about resources to help with Sentinel on 11th Sept 24*
 4 | 
 5 | 1. [Sentinel Applied Skill](https://learn.microsoft.com/en-us/credentials/applied-skills/configure-siem-security-operations-using-microsoft-sentinel/) |
 6 | [My experience](https://www.linkedin.com/feed/update/urn:li:activity:7125185465216823298/)
 7 | 2. [SC-200 Microsoft Certified: Security Operations Analyst Associate Certification](https://learn.microsoft.com/en-us/credentials/certifications/security-operations-analyst) | [My tips & advice](https://www.linkedin.com/feed/update/urn:li:activity:7150047254576336896/)
 8 | 3. [Microsoft Sentinel Tutorial from Josh Madakor](https://youtu.be/RoZeVbbZ0o0)
 9 | 
10 | If you have a subscription with Immersive Labs through your organization:
11 | 
12 | 4. [Sentinel SOAR lab from Immersive Labs](https://www.linkedin.com/feed/update/urn:li:activity:7182009442090024960/)
13 | 5. [Sentinel Deployment lab from Immersive Labs](https://www.linkedin.com/feed/update/urn:li:activity:7179379939404566530/)
14 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
 1 | # HowToGetStarted
 2 | This repository provides insight on how to get started with Cybersecurity / Microsoft Security
 3 | 
 4 | 🎥 [How To Get Started with Microsoft Security - Mariana Tech Academy Webinar](https://youtu.be/QKnDXzz4yx0&t=1384)
 5 | 
 6 | Below is a breakdown of the pages within this repo:
 7 | 
 8 | 1. [Certifications](Certifications.md) - This page will guide you on certifications to build foundational knowledge
 9 | 2. [MicrosoftSentinel](MicrosoftSentinel.md) - This page will guide you on getting started with Microsoft Sentinel
10 | 3. [KQL](KQL.md) - This page will guide you on getting started with Kusto Query Language (KQL)
11 | 4. [DefenderXDR](DefenderXDR.md) - This page will guide you on getting started with Defender XDR
12 | 5. [PurviewCompliance](PurviewCompliance.md) - This page will guide you on getting started with Purview Compliance
13 | 6. [MDE](MDE.md) - This page will guide you on getting started with Microsoft Defender for Endpoint (MDE)
14 | 7. [Azure Security](AzureSecurity.md) - This page will guide you on getting started with Azure Security
15 | 8. [M365 Incident Response](M365IncidentResponse.md) - This page will guide you on getting started with M365 Incident Response
16 | 9. [Microsoft MVP](MVP.md) - This page will help you to get started if you're interested to become an MVP
17 | 
18 | 
19 | 


--------------------------------------------------------------------------------
/PurviewCompliance.md:
--------------------------------------------------------------------------------
 1 | <h1>Purview Compliance</h1>
 2 | 
 3 | 1. [My talk introducing Purview Audit](https://youtu.be/osJ1L4wNgFc)
 4 | 2. [My talk on Purview eDiscovery/Audit for Incident Response](https://youtu.be/7v6uY5Z3ie8)
 5 | 3. [Information Protection/DLP Applied Skill](https://learn.microsoft.com/en-us/credentials/applied-skills/implement-information-protection-and-data-loss-prevention-by-using-microsoft-purview/) |
 6 | [My experience](https://www.linkedin.com/feed/update/urn:li:activity:7245333956806471680/)
 7 | 4. [SC-400 Microsoft Certified: Information Protection and Compliance Administrator Associate Certification](https://learn.microsoft.com/en-us/credentials/certifications/information-protection-administrator/?practice-assessment-type=certification) | [My tips & advice](https://www.linkedin.com/feed/update/urn:li:activity:7150047254576336896/)
 8 | 5. [eDiscovery, Retention and Communication Compliance Applied Skill](https://learn.microsoft.com/api/credentials/share/en-gb/PuravD-9957/463DEB754E2849F0?sharingId=MVP_388101) | [My experience](https://www.linkedin.com/feed/update/urn:li:activity:7258768624201404416/)
 9 | 6. [Festive Tech Calendar 2024 Day 26 - eDiscovery IR scenario for Teams](https://youtu.be/_GVkajW28ts)
10 | 7. [A Beginner's Guide to Microsoft Purview Products and Features](https://www.welkasworld.com/post/a-beginner-s-guide-to-microsoft-purview-products-and-features)
11 | 


--------------------------------------------------------------------------------
/MVP.md:
--------------------------------------------------------------------------------
 1 | <h1>Microsoft Most Valuable Professional (MVP)</h1>
 2 | 
 3 | *Thanks to [Nolan Lemuel Augustine]([https://www.linkedin.com/in/gauraverse/](https://www.linkedin.com/in/nolanaugustine/)) for inspiring this page from him asking me about resources to help with becoming MVP on 06/11/24*
 4 | 
 5 | <h2>Resources to help aspiring MVPs</h2>
 6 | 
 7 | 1. [#MVPBuzzChat Episode 283](https://youtu.be/8_tnQfU31gs)
 8 | 2. [Zync Cyber Expert Insights - Cloud Security, MVP & Building Your Brand](https://youtu.be/-pe-fDSo7H8)
 9 | 3. [BlueDragon Podcast S02E08 - How I became a Dual MVP](https://open.spotify.com/episode/4qE4pO5GyWXsh07kmq0N5t?si=r9D9OVqETCugQRBGpVbtQQ)
10 | 
11 | <br>
12 | 
13 | <h2>MVP Journey So far</h2>
14 | 
15 | * 2024: [Achieving MVP](https://www.linkedin.com/feed/update/urn:li:activity:7224878789258866689/) | [MVP Award Crystal](https://www.linkedin.com/feed/update/urn:li:activity:7234115050158854144/) | [Security Award Category update](https://www.linkedin.com/feed/update/urn:li:activity:7236839336384606209/) | [Credly badge](https://www.linkedin.com/feed/update/urn:li:activity:7244023663035826178/) | [Unofficially a Purview MVP](https://www.linkedin.com/feed/update/urn:li:activity:7253680060249862144/)
16 | 
17 | * 2025: [Renewal & becoming Dual MVP (Purview/SIEM & XDR) for the first time](https://www.linkedin.com/feed/update/urn:li:activity:7349097205422530561/) | [Credly badge](https://www.linkedin.com/feed/update/urn:li:activity:7361810695165734912/) | [Renewal Ring](https://www.linkedin.com/feed/update/urn:li:activity:7375801071140749312/)
18 | 


--------------------------------------------------------------------------------
/AzureSecurity.md:
--------------------------------------------------------------------------------
 1 | <h1>Azure Security</h1>
 2 | 
 3 | *Thanks to [Dhanu Krishna M.D](https://www.linkedin.com/in/dhanu-krishna-m-d-713299a1/) for inspiring this page from him asking me about resources to help with Azure Security on 08/11/24*
 4 | 
 5 | 1. [AZ-500: Azure Security Engineer Associate - Certification](https://learn.microsoft.com/en-gb/users/puravd-9957/credentials/93e77b09ede7e13a) | [My tips & advice](https://www.linkedin.com/feed/update/urn:li:activity:7135921809786298368/)
 6 | 2. [Cloud Security Today Season 4 Episode 10](https://www.cloudsecuritytoday.com/1723279/15505088-microsoft-365-incident-response)
 7 | 3. [Secure storage for Azure Files and Azure Blob Storage - Applied Skill](https://learn.microsoft.com/en-gb/users/puravd-9957/credentials/7ed8461bc185f502) | [LinkedIn Post](https://www.linkedin.com/feed/update/urn:li:activity:7126908208589238272/)
 8 | 4. [Secure Azure services and workloads with Microsoft Defender for Cloud regulatory compliance controls - Applied Skill](https://learn.microsoft.com/en-gb/users/puravd-9957/credentials/cca2ab0c8b2ad5d9) | [LinkedIn Post](https://www.linkedin.com/feed/update/urn:li:activity:7131686531047550976/)
 9 | 5. [Configure secure access to your workloads using Azure networking - Applied Skill](https://learn.microsoft.com/en-gb/users/puravd-9957/credentials/e89eca3a18efe35a) | [LinkedIn Post](https://www.linkedin.com/feed/update/urn:li:activity:7134933904666292224/)
10 | 6. [Implement security through a pipeline using Azure DevOps - Applied Skill](https://learn.microsoft.com/en-gb/users/puravd-9957/credentials/6c25336861efb1f6) | [LinkedIn Post](https://www.linkedin.com/feed/update/urn:li:activity:7142586353858351104/)
11 | 


--------------------------------------------------------------------------------
/KQL.md:
--------------------------------------------------------------------------------
 1 | <h1>Kusto Query Language (KQL)</h1>
 2 | 
 3 | 1. [MustLearnKQL](https://aka.ms/mustlearnkql)
 4 | 2. [SC-200 Microsoft Certified: Security Operations Analyst Associate Certification](https://learn.microsoft.com/en-us/credentials/certifications/security-operations-analyst) | [My tips & advice](https://www.linkedin.com/feed/update/urn:li:activity:7150047254576336896/)
 5 | 3. [Sentinel Applied Skill](https://learn.microsoft.com/en-us/credentials/applied-skills/configure-siem-security-operations-using-microsoft-sentinel/) |
 6 | [My experience](https://www.linkedin.com/feed/update/urn:li:activity:7125185465216823298/)
 7 | 4. [KQL Search](https://www.kqlsearch.com/) |
 8 | [My Purview Audit Query](https://www.kqlsearch.com/query/Purview%20Audit%20Search%20Monitoring&cm3bnzhzi001mmc0ti4spy8a5)
 9 | 5. [DeviceTvmSoftwareEvidenceBeta KQL Advanced Hunting Use Case](https://www.linkedin.com/pulse/devicetvmsoftwareevidencebeta-kql-advanced-hunting-use-purav-desai/)
10 | 6. [Sergio Albea's KQL Advent Calendar 2024](https://www.linkedin.com/feed/update/urn:li:activity:7277625278611263488/)
11 | 7. [KQL Cheat Sheet Explained by Rod Trent](https://rodtrent.substack.com/p/kql-cheat-sheet-explained)
12 | 
13 | Paid/Subscription resources:
14 | 
15 | 4. [Sentinel Blue Team Operations from Immersive Labs](https://www.linkedin.com/feed/update/urn:li:activity:7182009442090024960/)
16 | 5. [KQL Pluralsight course by Robert Cain](https://www.pluralsight.com/courses/kusto-query-language-kql-from-scratch)
17 | 6. [The Definitive Guide to KQL Book](https://www.microsoftpressstore.com/store/definitive-guide-to-kql-using-kusto-query-language-9780138293383)
18 | 7. [KQL Courses from BluRaven](https://academy.bluraven.io/courses) | [Community Testimonial](https://www.linkedin.com/feed/update/urn:li:activity:7234549034055610368/)
19 | 


--------------------------------------------------------------------------------