rootsecdev/Microsoft-Blue-ForestCreating a hardened “Blue Forest” with Server 2016/2019 Domain Controllers - rootsecdev/Microsoft-Blue-ForestGitHubrootsecdev [https://github.com/rootsecdev/Microsoft-Blue-Forest]…
All posts in Security
> Simple fix: use https://t.co/YWCaktFxpz to disable Excel 4.0 macros. The very next time all your users launch O365 ProPlus, they will download the block policy. https://t.co/Bc34FJJSjX — Joe Stocker (@ITguySoCal) July 3, 2020 [https://twitter.com/ITguySoCal/status/1279178772361605120?ref_src=twsrc%5Etfw]…
> Short Video I made with Automatic system hardening with MDM enrollments. You will see MS Edge, Office M365, Azure Information Protection, and Bitlocker deploy in the background. Sorry for the delay on my blog post. Its in depth. https://t.co/MjCh2OtMAq — Root (@rootsecdev) June 30, 2020 [https://twitter.com/rootsecdev/status/1278057220056514561?ref_src=twsrc%5Etfw]…
> Autoruns to WinEventLog -- A PowerShell script designed to execute Autoruns daily and convert to Event Log format for easy forwarding and ingestion into a SIEM. An interesting solution to hunt for evil persistence from @PalantirTech [https://twitter.com/PalantirTech?ref_src=twsrc%5Etfw] https://t.co/cWLAQojMpr pic.twitter.com/Sh8F8CsZ5F [https://t.co/Sh8F8CsZ5F] — Chad Tilbury (@chadtilbury) June 29, 2020 [https://twitter.com/chadtilbury/status/1277663144048017411?ref_src=twsrc%5Etfw]…
> Yes, it is listed in Microsofts documentation to 'help manage the data shared with Microsoft' and people who do not share Microsofts vision of Windows as an 'experience' understand that list less as a reference and more as a baseline recommendation: https://t.co/Wlhi4gBkQv — Hu Beitmondieu (@hubeit) June 30, 2020 [https://twitter.com/hubeit/status/1277819950531522560?ref_src=twsrc%5Etfw] Manage connections from Windows 10 operating system components to Microsoft services - Windows PrivacyLear…