Core Infrastructure and Security Blog

1,747Blog Articles

Options

1,808

TanTran on 10-19-2020 03:48 AM

Sometimes you forgot a few content lines in the needed advanced hunting query of Microsoft Endpoint Protection (Microsof...

806

Bruno Gabrielli on 10-16-2020 12:00 AM

Today, I am here again, to present one of the possible solutions to keep the Microsoft Monitoring Agent (MMA) installed ...

1,034

BrandonWilson on 10-15-2020 01:12 PM

First published on TechNet on Jul 22, 2012 Now, there is no possible way to cover every possible detail from every day d...

797

Bruno Gabrielli on 10-13-2020 03:00 PM

The question of the day is how can we make sure our Log Analytics agent (aka Microsoft Monitoring Agent (MMA)) is always...

2,636

John_Barbare on 10-12-2020 12:01 AM

In this blog, you will learn about human operated Ransomware, SharePoint Online recovery, and the preventive measures to...

5,854

John_Barbare on 10-09-2020 12:01 AM

In this blog you will learn about Windows 10 auto enrollment for a work or school account in Microsoft Endpoint Manager.

1,786

Preston Parsard on 10-07-2020 04:38 PM

Jessica, our cloud engineer has just built an Azure development lab environment using Infrastructure-As-Code.

1,517

Bruno Gabrielli on 10-04-2020 03:00 PM

While there are lots of good resources about writing Log Analytics queries and many blog posts have been written, today ...

3,963

Zoheb Shaikh on 10-01-2020 04:20 PM

Zoheb here again with my colleague Simon Woolley from the beautiful city of Dubai and today we will be sharing some deta...

1,103

Jen_Ross on 10-01-2020 10:38 AM

You are reading the September issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Notewor...

1,427

TanTran on 09-30-2020 08:29 PM

Microsoft Defender Advanced Threat Protection Operation for Security Operator, Security Administrator.

1,254

Srinivas Varukala on 09-27-2020 10:30 PM

With the latest release of SharePoint Online Client Components aka CSOM (Client-Side Object Model) (version: 16.1.20317....

2,073

AndrewCoughlin on 09-25-2020 12:00 AM

In this blog I will focus on adding an additional server to an Azure File Sync and remove the old server.

1,829

HoussemDellai on 09-23-2020 01:46 AM

Learn how to scale applications in Kubernetes using the HPA, Cluster Autoscaler and the Virtual Node.

2,173

Paul Bergson on 09-21-2020 06:24 AM

Microsoft has built in security controls in our modern o/s’s to assist our customers in controlling the use of defined U...

2,563

AndrewCoughlin on 09-18-2020 12:00 AM

I will cover how to integrate DFS Namespaces with Azure File Sync and add a file sync server to an existing target folde...

4,062

TanTran on 09-16-2020 06:59 PM

Step-by-step deploying, testing and troubleshooting Azure ATP

2,574

AndrewCoughlin on 09-14-2020 12:00 AM

In this blog I will focus on how to upload a custom windows Hyper-V image for generation 2 virtual machines in Azure.

4,035

Zoheb Shaikh on 09-10-2020 03:46 PM

Zoheb here again with my colleague Peter Chaukura from Microsoft South Africa and today we will be sharing some details ...

2,824

TanTran on 09-09-2020 05:09 AM

Step-by-step troubleshooting WUfB deployed by Intune or SCCM. The troubleshooting tools include Azure Update Compliance ...

8,718

John_Barbare on 09-07-2020 12:20 AM

In this blog, you will learn and see a demo of Microsoft Defender Application Guard for Office in Public Preview.

1,496

Jen_Ross on 09-04-2020 12:01 AM

You are reading the August issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Noteworthy...

1,491

Dave Newman (PFE) on 09-03-2020 08:43 PM

Azure Site Recovery is a great tool but sometimes the system makes decisions for you that may not match with your corpor...

5,544

Jerry Devore on 09-02-2020 12:58 PM

In response to the current threat landscape, security departments are beginning to require AES for Kerberos ticket encry...

2,140

rodtrent on 09-01-2020 06:45 AM

Learn how to grant access to specific Playbooks for lower-role analysts to help maximize productivity for the entire Sec...

3,829

rodtrent on 08-31-2020 08:45 AM

Learn how to share Workbooks with others outside of Azure Sentinel to give access to the valuable visualizations/reports...

4,173

Arnab Mitra on 08-27-2020 06:14 AM

As an IT admin you plan to ship new devices to end users which can join the on-premises AD (Active Directory) by leverag...

2,701

RodrigoGiordano on 08-26-2020 09:08 AM

Users are working remotely or home office. What should we consider when provisioning/manage remote computers.

4,980

John_Barbare on 08-24-2020 09:00 PM

In this blog, you will learn how prone your organization is from an app perspective in MDATP and how to remediate using ...

2,650

Fabian0402 on 08-24-2020 03:20 AM

In this article, we will see how to configure the Thresholds of your SCCM to get note about bottlenecks and issues

Latest Comments

in Microsoft Endpoint Protection (MD ATP) Commonly Used Queries and Examples on 10-19-2020

This is super useful and will bookmark! Thanks and excellent article.

0 Likes

in Maintain Your Microsoft Monitoring Agent Up To Date With Azure Automation on 10-19-2020

thanks for the useful script to automate the MMA upgrade

0 Likes

in Converting ETL Files to PCAP Files on 10-19-2020

Sadly etl2pcapng doesn't work as well as the message analyser export. Capturing VPN traffic I find the resulting pcap is missing that VPN traffic even though it is present in the etl file and is properly produced by the pcap export in Message analyser. netsh trace capture used to get traffic before ...

0 Likes

in Tagging Azure Resources with a Creator on 10-18-2020

@lmpalermo - I haven't seen that, are they being deployed in the same deployment as a virtual machine? My disks are tagged with 05250873-b7a8-4392-b112-cf3c65d72ee1 which is the application Id for the Compute Resource Provider.

0 Likes

in Trying Out Autopilot Hybrid Join Over VPN In Your Azure Lab on 10-17-2020

Great Demonstration Cheers.!!!

1 Likes