Has anyone tried this approach of using a custom CSS template in
Microsoft Entra ID Company Branding, to trigger a logic that detects
when a user visited a Microsoft login page via an AitM site / proxy ?
The process is explained here:AitM detection with Sentinel via custom
CSS (hybridbrothers.com) B...
This KQL query for "MDE Advanced Hunting query for known vulnerable
drivers using the community and Microsoft lists" is throwing errors
Tried executing the function "indicatorsFromMsft" separately to get the
list of vulnerable drivers but still error.
@acmartin635 WHQL is not a security certificate, nor does it guarantee
more security than non-WHQL certified drivers. This is the official
explanation: Driver packages that pass Windows Hardware Lab Kit (HLK)
testing can be digitally-signed by WHQL. It's just a Windows
compatibility certification. A...
Latest Comments