> Wow, this was a happy little discovery... Here's a huge list of recommended remediations for #ActiveDirectory [https://twitter.com/hashtag/ActiveDirectory?src=hash&ref_src=twsrc%5Etfw] https://t.co/FE84VsRcmp There's a bunch of other guidance in this section. Looks like it's for the old PFE-led RaaS's, but still valid :P — Nathan McNulty (@NathanMcNulty) October 24, 2020 [https://twitter.com/NathanMcNulty/status/1319793488754425856?ref_src=twsrc%5Etfw] Remediation steps for Active Directory…
> Secret tip. Running Windows Pro? Not a Defender ATP customer. They still work with defender standalone. Pre-configure ASR even if you use a third party solution. If your primary AV fails to get loaded you should be in a decent protected state out of the box. #infosec [https://twitter.com/hashtag/infosec?src=hash&ref_src=twsrc%5Etfw] https://t.co/1K41kDZTf0 — Root (@rootsecdev) October 10, 2020 [https://twitter.com/rootsecdev/status/1314729531639463937?ref_src=twsrc%5Etfw]…
Microsoft's Guidance on disabling system services on Windows Server 2016 with Desktop Experience enabled. > This guidance should be applicable to Server 2019 as well if you want to look at disabling services as a wholistic strategy to your security hardening landscape. Guidance on disabling system services on Windows Server 2016 with Desktop Experiencehttps://t.co/aQ6i2cOQ3I — Root (@rootsecdev) September 20, 2020 [https://twitter.com/rootsecdev/status/1307686966595588098?ref_src=twsrc%5Etfw]…
Guidance from Microsoft on deploying the critical August 2020 security updates; https://support.microsoft.com/en-us/help/4557222/how-to-manage-the-changes-in-netlogon-secure-channel-connections-assoc CVE-2020-1472…
Should you?... Read the thread; > Please, say me you disabled Printer Spoolers on your domain controllers? Rigth?https://t.co/MibVX29xof — 🥝 Benjamin Delpy (@gentilkiwi) September 20, 2020 [https://twitter.com/gentilkiwi/status/1307664846545203203?ref_src=twsrc%5Etfw]…