{"id":53,"date":"2024-01-06T12:13:26","date_gmt":"2024-01-06T12:13:26","guid":{"rendered":"https:\/\/harrisonjonesit.co.uk\/?p=53"},"modified":"2025-03-26T09:14:26","modified_gmt":"2025-03-26T09:14:26","slug":"improve-him-believe-opinion-offered","status":"publish","type":"post","link":"https:\/\/harrisonjonesit.co.uk\/?p=53","title":{"rendered":"First Cyber Security Project"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"53\" class=\"elementor elementor-53\">\n\t\t\t\t\t\t\t<div class=\"elementor-element elementor-element-2771567 e-flex e-con-boxed e-con e-parent\" data-id=\"2771567\" data-element_type=\"container\" data-settings=\"{&quot;content_width&quot;:&quot;boxed&quot;}\" data-core-v316-plus=\"true\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-0c3b04d e-flex e-con-boxed e-con e-parent\" data-id=\"0c3b04d\" data-element_type=\"container\" data-settings=\"{&quot;content_width&quot;:&quot;boxed&quot;}\" data-core-v316-plus=\"true\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-5243d67 elementor-widget elementor-widget-heading\" data-id=\"5243d67\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.18.0 - 20-12-2023 *\/\n.elementor-heading-title{padding:0;margin:0;line-height:1}.elementor-widget-heading .elementor-heading-title[class*=elementor-size-]>a{color:inherit;font-size:inherit;line-height:inherit}.elementor-widget-heading .elementor-heading-title.elementor-size-small{font-size:15px}.elementor-widget-heading .elementor-heading-title.elementor-size-medium{font-size:19px}.elementor-widget-heading .elementor-heading-title.elementor-size-large{font-size:29px}.elementor-widget-heading .elementor-heading-title.elementor-size-xl{font-size:39px}.elementor-widget-heading .elementor-heading-title.elementor-size-xxl{font-size:59px}<\/style><h2 class=\"elementor-heading-title elementor-size-default\">First Cyber Security Project<\/h2>\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-d66a4bb elementor-widget elementor-widget-image\" data-id=\"d66a4bb\" data-element_type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.18.0 - 20-12-2023 *\/\n.elementor-widget-image{text-align:center}.elementor-widget-image a{display:inline-block}.elementor-widget-image a img[src$=\".svg\"]{width:48px}.elementor-widget-image img{vertical-align:middle;display:inline-block}<\/style>\t\t\t\t\t\t\t\t\t\t\t\t<img fetchpriority=\"high\" decoding=\"async\" width=\"750\" height=\"434\" src=\"https:\/\/harrisonjonesit.co.uk\/wp-content\/uploads\/2024\/01\/RDP-MAP-1-1024x593.png\" class=\"attachment-large size-large wp-image-206\" alt=\"\" srcset=\"https:\/\/harrisonjonesit.co.uk\/wp-content\/uploads\/2024\/01\/RDP-MAP-1-1024x593.png 1024w, https:\/\/harrisonjonesit.co.uk\/wp-content\/uploads\/2024\/01\/RDP-MAP-1-300x174.png 300w, https:\/\/harrisonjonesit.co.uk\/wp-content\/uploads\/2024\/01\/RDP-MAP-1-768x444.png 768w, https:\/\/harrisonjonesit.co.uk\/wp-content\/uploads\/2024\/01\/RDP-MAP-1-1536x889.png 1536w, https:\/\/harrisonjonesit.co.uk\/wp-content\/uploads\/2024\/01\/RDP-MAP-1.png 1645w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/>\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-36f8b4d4 elementor-widget elementor-widget-text-editor\" data-id=\"36f8b4d4\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.18.0 - 20-12-2023 *\/\n.elementor-widget-text-editor.elementor-drop-cap-view-stacked .elementor-drop-cap{background-color:#69727d;color:#fff}.elementor-widget-text-editor.elementor-drop-cap-view-framed .elementor-drop-cap{color:#69727d;border:3px solid;background-color:transparent}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap{margin-top:8px}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap-letter{width:1em;height:1em}.elementor-widget-text-editor .elementor-drop-cap{float:left;text-align:center;line-height:1;font-size:50px}.elementor-widget-text-editor .elementor-drop-cap-letter{display:inline-block}<\/style>\t\t\t\t<p><!-- wp:paragraph --><\/p>\n<p>For my first real hands on cyber security project, I decided to follow a guide on how to create a SIEM in Microsoft Azure.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>I created a Windows 10 virtual machine and made it susceptible to the internet by turning almost all firewall options off in order to collect as much data as possible from possible attacks when the machine went live.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>the next part was the most complicated. I created a custom PowerShell script to extract metadata from event viewer to be forwarded to a 3rd party API to derive geolocation data (the attackers location). I configured custom logs in Azures log analytics workspace to collect this geolocation data.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>finally I configured Azure Sentinel to display global attack data through RDP brute force attempts on a map while also seeing the magnitude of the attack attempts<\/p>\n<p><!-- \/wp:paragraph --><\/p>\n<p><!-- wp:paragraph --><\/p>\n<p>overall this was a fun first project despite being rather challenging due to my small experience with PowerShell however my understanding of Sentinel and SIEM&#8217;s in general helped get this one over the line.<\/p>\n<p><!-- \/wp:paragraph --><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-b4c0ad6 e-flex e-con-boxed e-con e-parent\" data-id=\"b4c0ad6\" data-element_type=\"container\" data-settings=\"{&quot;content_width&quot;:&quot;boxed&quot;}\" data-core-v316-plus=\"true\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t<div class=\"elementor-element elementor-element-34fe6f6 elementor-widget elementor-widget-text-editor\" data-id=\"34fe6f6\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p><\/p>\n<p><\/p>\n<p>Link to Powershell script found on GitHub <a href=\"https:\/\/github.com\/joshmadakor1\/Sentinel-Lab\/blob\/main\/Custom_Security_Log_Exporter.ps1\">Sentinel-Lab\/Custom_Security_Log_Exporter.ps1 at main \u00b7 joshmadakor1\/Sentinel-Lab \u00b7 GitHub<\/a><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t<div class=\"elementor-element elementor-element-8949ed7 e-flex e-con-boxed e-con e-parent\" data-id=\"8949ed7\" data-element_type=\"container\" data-settings=\"{&quot;content_width&quot;:&quot;boxed&quot;}\" data-core-v316-plus=\"true\">\n\t\t\t\t\t<div class=\"e-con-inner\">\n\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>First Cyber Security Project For my first real hands on cyber security project, I decided to follow a guide on how to create a SIEM in Microsoft Azure. I created a Windows 10 virtual machine and made it susceptible to the internet by turning almost all firewall options off in [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":206,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[1],"tags":[],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/53"}],"collection":[{"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=53"}],"version-history":[{"count":24,"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/53\/revisions"}],"predecessor-version":[{"id":335,"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=\/wp\/v2\/posts\/53\/revisions\/335"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=\/wp\/v2\/media\/206"}],"wp:attachment":[{"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=53"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=53"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/harrisonjonesit.co.uk\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=53"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}