Archive
azure
Automate Azure Golden Image Builds
One Bicep deploy. Monthly builds. No manual sysprep. How this started Back when I was still heavily working in the Azure Virtual Desktop space,…
The Privileged Role Exposures Defender Misses
A look at Tier Zero exposure paths that don’t show up in the obvious places — and a tool to find them. How this started…
Least Privilege Studio: An Azure RBAC Tool
If you’ve ever set up a service principal in Azure and thought “I’ll just use Contributor for now” — this is for you. It’s…
Azure Cloud Adoption: Landing Zones, WAF, and the Big Picture
This post is different from my usual project or solution based posts — no code, no architecture diagrams. Just the mental model I wish…
Managing Secrets in Terraform: From Bad to Automated
When it comes to Infrastructure as Code (IaC), Terraform is an incredibly powerful tool. It allows us to define, deploy, and maintain entire environments…
Sending Custom Logs to Log Analytics via HTTP
Centralized logging is a cornerstone of any professional IT or DevOps setup. Azure Log Analytics (LAW) / Azure Monitor provides a powerful platform not…
Automated Terraform Deployments with GitHub
Managing infrastructure through Terraform is powerful — but doing it securely and automatically is where real efficiency begins. In this guide, we’ll set up…
Azure Service Groups – A New Way to Organize Your Cloud
Microsoft has recently introduced Azure Service Groups (public preview since August 2025) – a feature designed to bring flexibility and clarity into how you…
Auditing Azure VM Operating Systems
Managing a growing Azure environment often means dealing with multiple subscriptions, distributed teams, and a wide range of virtual machine configurations. One critical but…
VM Power Management in Azure Using Tags, Runbooks, and a Custom GUI
As a Cloud Solutions Engineer, optimizing costs and automating operations is a daily priority. One of the common challenges in Azure is managing the…