Microsoft Security Experts Blog

Options
6,270
rpeckham on Jun 19 2024 09:30 AM
7,282
DenizSezer on Jun 11 2024 09:30 AM
4,387
dmayes on May 21 2024 09:30 AM
2,111
Elisa_Lippincott on May 06 2024 09:00 AM
11.8K
Mary_Asaolu on Apr 30 2024 07:00 AM
8,975
stefanpuzderca on Apr 09 2024 08:41 AM
8,137
DenizSezer on Mar 21 2024 09:00 AM
6,455
Elisa_Lippincott on Feb 20 2024 07:20 AM
19K
krithikar on Feb 12 2024 05:00 AM
16.7K
PhoebeRogers on Jan 25 2024 05:23 PM
2,698
ashutoshmaheshwari on Jan 18 2024 07:38 PM
8,231
DillonPersaud on Jan 10 2024 05:42 PM
16.9K
JoeCicero on Jan 03 2024 11:04 AM
18.1K
JoeCicero on Dec 14 2023 07:00 AM
8,253
Raae_ on Dec 05 2023 06:59 AM
9,957
Elisa_Lippincott on Nov 15 2023 08:10 AM
18.9K
JoeCicero on Nov 13 2023 08:00 AM
11.1K
JoeCicero on Nov 06 2023 08:06 AM
3,349
Elisa_Lippincott on Sep 21 2023 01:30 PM
22.7K
PhoebeRogers on Sep 19 2023 02:58 PM
9,113
JoeCicero on Sep 13 2023 04:12 PM
6,018
Vivek Kumar on Sep 05 2023 01:12 PM
8,638
Kirtar on Aug 28 2023 10:04 AM
16K
BrookeLynnWeenig on Jun 14 2023 10:09 AM
4,797
Elisa_Lippincott on Apr 18 2023 01:49 PM
27.4K
Steve_Versteeg on Apr 05 2023 06:54 AM
4,835
Elisa_Lippincott on Mar 14 2023 04:33 PM

Latest Comments

Please note that AD Forest Recovery doesn't mention DPAPI backup keys:"There currently is no officially supported way of changing or rotating these DPAPI backup keys on the domain controllers. In accordance with the document MS-BKRP, 3rd parties have the ability to develop an application or script t...
0 Likes
So usefull ! Thank you very much  
0 Likes
Excellent idea and great work! I was playing around with this, wanted to create a detection rule against but couldn't get UserID or DeviceID into it.Any idea how to create a detection rule, for sure it will be a strong one. Thank you for sharing this!
0 Likes
Thank you for the heads up! Appreciate it! The link has been updated.
0 Likes
Link to Sentinel instance within the unified security operations platformpoints to review.learn... it should point to https://learn.microsoft.com/en-us/azure/sentinel/microsoft-sentinel-defender-portal @Elisa_Lippincott
1 Likes