KQL queries to extract identity, group membership, and device information from Microsoft Sentinel when you don't have direct access to Entra ID or Intune portals.

How to use Claude Code hooks to automate the tedious bits of development workflow, ensuring consistent formatting, linting, and quality checks without manual intervention.

A comprehensive guide to PowerShell scripting best practices covering everything from script structure and error handling to security, testing, and cross-platform compatibility. Includes prioritised checklists, anti-patterns to avoid, and a practical example template.

How I built an MCP server to bridge Microsoft Sentinel with Large Language Models.

How to connect the Microsoft Docs MCP server to Claude Code for real-time access to official Microsoft documentation, eliminating outdated info and guesswork.

AI-generated research on how expired or unregistered domains in SPF records create severe vulnerabilities that enable email authentication bypass and sophisticated phishing attacks.

How to fix FortiAnalyzer's non-compliant CEF messages that lack syslog PRI headers when ingesting to Microsoft Sentinel via Azure Monitor Agent, supporting both rsyslog and syslog-ng environments.

How I leveraged Claude and Claude Code CLI to rapidly develop a bespoke WordPress to Jekyll migration tool, turning what might have been days of work into a few hours of iterative development.

How to reliably call Claude Code CLI from Windows PowerShell when it's installed in WSL under Node.js via NVM, preserving context and working directory.

A comprehensive reference guide to permitted and blocked KQL functions and operators in Azure Monitor Data Collection Rule transformations.