Raphaël Pothin 🐼 Microsoft MVP · @raphaelpothin
39 followers · 13 posts · Server techhub.socialAnd we continue our #PowerPlatform 's protection journey exploring how #DefenderforCloudApps can help us improve our security posture 🕵🏼♂️
https://medium.com/raphaël-pothin/power-platforms-protection-defender-for-cloud-apps-ac90baa26947
I hope you will learn a few things reading this 😊
#Governance #Security #Dynamics365 #Dataverse #ModelDrivenApps
#powerplatform #defenderforcloudapps #governance #security #dynamics365 #dataverse #modeldrivenapps
F0rm4t · @F0rm4t
31 followers · 33 posts · Server infosec.exchange
Hunting - Office 365 Unified Audit Log
"This is a key data source in any cloud investigation because it contains a record of all the activity that has occurred in Office 365 and Azure Active Directory."
"If we use this resource correctly, it can help us build a full story of a threat actor’s activity in Office 365."
https://techcommunity.microsoft.com/t5/microsoft-security-experts-blog/good-ual-hunting/ba-p/3718421
#hunting #advancedhunting #office365 #microsoft365 #sentinel #microsoftsentinel #casb #xdr #Azure #microsoft #microsoftsecurity #audit #ual #AzureActiveDirectory #Exchange #OneDrive #DefenderforCloudApps #siem #soar #cloud #cloudsecrity #data #kql
#hunting #advancedhunting #office365 #microsoft365 #sentinel #MicrosoftSentinel #casb #xdr #azure #microsoft #microsoftsecurity #audit #UAL #azureactivedirectory #exchange #onedrive #defenderforcloudapps #siem #soar #cloud #cloudsecrity #data #KQL
Geekmaster 👽 · @Geekmaster
91 followers · 724 posts · Server ioc.exchangeAlso be sure to turn on these monitoring policies in #DefenderForCloudApps so you can #CatchTheHacker before they get too deep, whether you switch to #Kerberos or not. #NetworkSegregation is also a great #LayeredDefense method to ensure if one system is compromised the attacker can't use #SMBtraversal to get to all your computers, globally. #EternalBlue source code is still being used to get to #DCs via #Trikbot evolutions, after #Phishing a user with #LocalAdmin privileges, to execute #mimikatz against #ActiveDirectory to steal all the objects. #YesThisHappened
#defenderforcloudapps #catchthehacker #kerberos #networksegregation #layereddefense #smbtraversal #eternalblue #DCS #trikbot #phishing #localadmin #mimikatz #activedirectory #yesthishappened
Gareth Emslie 🇿🇦 🇪🇦 🇨🇭 · @keyoke_za
14 followers · 69 posts · Server hachyderm.io
We are happy to announce that applications that use ports other than 443 can now be protected in real-time using Defender for Cloud Apps #DefenderForCloudApps #RealTimeControls #sharegeneratedinpartwithgpt3 https://techcommunity.microsoft.com/t5/microsoft-365-defender-blog/protecting-apps-that-use-non-standard-ports-with-defender-for/ba-p/3685351
#defenderforcloudapps #realtimecontrols #sharegeneratedinpartwithgpt3