Core Infrastructure and Security Blog

1,748Blog Articles

Options

1,159

MorneNaude on 10-21-2020 11:18 AM

Conditional Access Adoption This blog describes how we migrated away from “per user” base multifactor authentication to ...

2,104

TanTran on 10-19-2020 03:48 AM

Sometimes you forgot a few content lines in the needed advanced hunting query of Microsoft Endpoint Protection (Microsof...

922

Bruno Gabrielli on 10-16-2020 12:00 AM

Today, I am here again, to present one of the possible solutions to keep the Microsoft Monitoring Agent (MMA) installed ...

1,203

BrandonWilson on 10-15-2020 01:12 PM

First published on TechNet on Jul 22, 2012 Now, there is no possible way to cover every possible detail from every day d...

850

Bruno Gabrielli on 10-13-2020 03:00 PM

The question of the day is how can we make sure our Log Analytics agent (aka Microsoft Monitoring Agent (MMA)) is always...

2,743

John_Barbare on 10-12-2020 12:01 AM

In this blog, you will learn about human operated Ransomware, SharePoint Online recovery, and the preventive measures to...

5,942

John_Barbare on 10-09-2020 12:01 AM

In this blog you will learn about Windows 10 auto enrollment for a work or school account in Microsoft Endpoint Manager.

1,824

Preston Parsard on 10-07-2020 04:38 PM

Jessica, our cloud engineer has just built an Azure development lab environment using Infrastructure-As-Code.

1,563

Bruno Gabrielli on 10-04-2020 03:00 PM

While there are lots of good resources about writing Log Analytics queries and many blog posts have been written, today ...

4,000

Zoheb Shaikh on 10-01-2020 04:20 PM

Zoheb here again with my colleague Simon Woolley from the beautiful city of Dubai and today we will be sharing some deta...

1,120

Jen_Ross on 10-01-2020 10:38 AM

You are reading the September issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Notewor...

1,468

TanTran on 09-30-2020 08:29 PM

Microsoft Defender Advanced Threat Protection Operation for Security Operator, Security Administrator.

1,277

Srinivas Varukala on 09-27-2020 10:30 PM

With the latest release of SharePoint Online Client Components aka CSOM (Client-Side Object Model) (version: 16.1.20317....

2,135

AndrewCoughlin on 09-25-2020 12:00 AM

In this blog I will focus on adding an additional server to an Azure File Sync and remove the old server.

1,858

HoussemDellai on 09-23-2020 01:46 AM

Learn how to scale applications in Kubernetes using the HPA, Cluster Autoscaler and the Virtual Node.

2,247

Paul Bergson on 09-21-2020 06:24 AM

Microsoft has built in security controls in our modern o/s’s to assist our customers in controlling the use of defined U...

2,660

AndrewCoughlin on 09-18-2020 12:00 AM

I will cover how to integrate DFS Namespaces with Azure File Sync and add a file sync server to an existing target folde...

4,149

TanTran on 09-16-2020 06:59 PM

Step-by-step deploying, testing and troubleshooting Azure ATP

2,639

AndrewCoughlin on 09-14-2020 12:00 AM

In this blog I will focus on how to upload a custom windows Hyper-V image for generation 2 virtual machines in Azure.

4,066

Zoheb Shaikh on 09-10-2020 03:46 PM

Zoheb here again with my colleague Peter Chaukura from Microsoft South Africa and today we will be sharing some details ...

2,848

TanTran on 09-09-2020 05:09 AM

Step-by-step troubleshooting WUfB deployed by Intune or SCCM. The troubleshooting tools include Azure Update Compliance ...

8,782

John_Barbare on 09-07-2020 12:20 AM

In this blog, you will learn and see a demo of Microsoft Defender Application Guard for Office in Public Preview.

1,517

Jen_Ross on 09-04-2020 12:01 AM

You are reading the August issue of the Infrastructure + Security: Noteworthy News series! As a reminder, the Noteworthy...

1,511

Dave Newman (PFE) on 09-03-2020 08:43 PM

Azure Site Recovery is a great tool but sometimes the system makes decisions for you that may not match with your corpor...

5,689

Jerry Devore on 09-02-2020 12:58 PM

In response to the current threat landscape, security departments are beginning to require AES for Kerberos ticket encry...

2,194

rodtrent on 09-01-2020 06:45 AM

Learn how to grant access to specific Playbooks for lower-role analysts to help maximize productivity for the entire Sec...

3,893

rodtrent on 08-31-2020 08:45 AM

Learn how to share Workbooks with others outside of Azure Sentinel to give access to the valuable visualizations/reports...

4,381

Arnab Mitra on 08-27-2020 06:14 AM

As an IT admin you plan to ship new devices to end users which can join the on-premises AD (Active Directory) by leverag...

2,726

RodrigoGiordano on 08-26-2020 09:08 AM

Users are working remotely or home office. What should we consider when provisioning/manage remote computers.

5,047

John_Barbare on 08-24-2020 09:00 PM

In this blog, you will learn how prone your organization is from an app perspective in MDATP and how to remediate using ...

Latest Comments

in Extending Hardware Inventory for System Center Configuration Manager on 10-21-2020

Likewise - very useful post, thanks! Just one other thing; the "Publish Certificate Inventory" script has a slight flaw, due to the fact that powershell .Count - can't!The final line reads (expanded for clarity):If( (Get-WmiObject -Namespace root\cimv2 -class cm_CertInfo).count -gt 0 ) {Write-Host "...

0 Likes

in Dharma Ransomware: Recovery and Preventative Measures on 10-20-2020

The Article provides critical information needed for proactive and reactive solution against ransomware attack. Excellent document!

0 Likes

in Microsoft Endpoint Protection (MD ATP) Commonly Used Queries and Examples on 10-19-2020

This is super useful and will bookmark! Thanks and excellent article.

0 Likes

in Maintain Your Microsoft Monitoring Agent Up To Date With Azure Automation on 10-19-2020

thanks for the useful script to automate the MMA upgrade

0 Likes

in Converting ETL Files to PCAP Files on 10-19-2020

Sadly etl2pcapng doesn't work as well as the message analyser export. Capturing VPN traffic I find the resulting pcap is missing that VPN traffic even though it is present in the etl file and is properly produced by the pcap export in Message analyser. netsh trace capture used to get traffic before ...

0 Likes