-
Running Claude Code from Windows CLI: A Practical Guide
Practical lessons learned from programmatically invoking Claude Code on Windows, including the gotchas around tool permissions and system prompts that took some time to figure out. -
UTCM: Quick Evaluation for Security Consultants
Microsoft's new Unified Tenant Configuration Management (UTCM) looks promising for drift monitoring, but doesn't fit the bill for point-in-time security assessments. -
Trust But Verify: Using Claude Code's Hooks, Skills, and Agents to Generate Code That's Not Totally Insecure
How security professionals can leverage Claude Code's extensibility framework to enforce deterministic security checks on AI-generated code, treating AI coding assistants like any other developer on the team. -
Fingerprinting Services Behind Proofpoint Hosted SPF: A Reconnaissance Technique
A technique for fingerprinting which third-party email services organisations have authorised through their Proofpoint Hosted SPF implementation. -
Everything You Need to Know About Sentinel Data Lake
A comprehensive guide to Microsoft Sentinel Data Lake as at October 2025 -
When DuckDB FTS Meets Async MCP: An AI-Assisted Debugging Nightmare
A cautionary tale about vibe coding utilities that combine synchronous and asynchronous code. -
CISA BOD 25-01: When Compliance Contradicts Best Practice
US Federal civilian executive branch agencies using Microsoft 365 must choose between complying with CISA's SCuBA requirements or following industry best practice for email authentication. They can't do both. -
Setting Up MITRE ATT&CK MCP Server on Windows for Claude
How to set up the mitre-mcp server on Windows to give Claude direct access to MITRE ATT&CK framework data for threat intelligence and security analysis. -
Parsing JSON Data with PowerShell: From Raw API Responses to Structured Reports
How to use PowerShell to parse and analyse JSON data from APIs and exports, transforming complex nested structures into structured reports ready for analysis. -
M365 Email OSINT After the Lockdown: What Still Works in 2025
Pondering Microsoft's recent Autodiscover service changes, and the information that remains publicly accessible for M365 email security reconnaissance.
subscribe via RSS