Robbe Van den Daele
Passionate about Microsoft Security, Purple Teaming, and Security research
๐ Biography
I'm Robbe, an information security professional driven by a genuine passion for my work. My focus lies in Cloud Security, Purple Teaming, Microsoft Security Solutions, and the powerful MITRE ATT&CK framework. As a purple teamer, I excel at detecting and mitigating cybersecurity threats, identifying vulnerabilities, and fortifying defenses. I've embraced the MITRE ATT&CK framework, consulting organizations on understanding adversaries and strengthening their security posture. I'm driven by a thirst for knowledge, constantly staying ahead of industry trends through engagement with information security communities, conferences, and continuous learning. I try to give as much as possible back to the cybersecurity community, by blogging at hybridbrothers.com, speaking at conferences, and organizing events with MC2MC.
โจ High-Impact Contributions 5
While I am one of the organizers of the MC2MC Live events, the community also asked me to present my session 'From a cloud-only Entra account to Domain Admin - A real-life war story'. In this session, I show the community how we work as a Blue Team in Purple Teaming exercises with the client, and use the Microsoft Defender XDR stack to hunt through a real life attack story. It shows the strengths and best-practices of the Microsoft Security stack, and teaches the attendees how powerful Defender XDR and it's products are.
This is a system auto-created Activity associated with the MC2MC Connect 2026.
On 13/01/2026 I spoke at the Microsoft Security Community YellowHat in the Netherlands. This community event hosts sessions for +200 on-site attendees and +2000 broadcast attendees. My session 'From a cloud-only Entra account to Domain Admin - A real-life war story' took the audience through a real-life Purple Teaming scenario and how we conducted the exercise using Microsoft Security tools. This session not only included the completed Microsoft Defender XDR stack, but also best-practices on Identity & Access for privileged users.
I was one of the reviewers of the AzureAD-Attack-Defense playbooks, more specifically for the Microsoft Entra Connect Application-based Authentication playbook. This community resource provides guidance on how to detect and respond on Entra ID related attacks, and is very valuable for the community.
With MC2MC, we have build a user group for the Belgian Microsoft Community focusing on three key pillars: Endpoint Management, Cloud / Hybrid Cloud, and Security / Compliance. As board member, I am one of the responsible people that organize our eight evening events and one day event a year. Beside that, we are also building a student program, and give coaching sessions for people still in the early stages of their Microsoft career. Bringing people together, and providing them with knowledge from the best public speakers, is one of our core missions.