@netsecse.bsky.social
"Refer back to matters decided upon at the last meeting and attempt to re-open the question of the advisability of that decision."
Set up EDR detections for files in those dit making network connections (exclude legit).
If using MDE you can build custom rules around ASR "AsrUntrustedExecutableAudited". Many can't put this rule in block mode but audit will flag suspicious files which can then be further tuned in custom rules.
If using MDE you can build custom rules around ASR "AsrUntrustedExecutableAudited". Many can't put this rule in block mode but audit will flag suspicious files which can then be further tuned in custom rules.
February 14, 2025 at 9:31 PM
Set up EDR detections for files in those dit making network connections (exclude legit).
If using MDE you can build custom rules around ASR "AsrUntrustedExecutableAudited". Many can't put this rule in block mode but audit will flag suspicious files which can then be further tuned in custom rules.
If using MDE you can build custom rules around ASR "AsrUntrustedExecutableAudited". Many can't put this rule in block mode but audit will flag suspicious files which can then be further tuned in custom rules.
Bit of a long shot, but is there any hope you might reconsider and release security baselines in GPO format (in Security Compliance Toolkit)? Seeing this requested a fair bit on Reddit and other places and there's a 3rd party version on GitHub. But would ofc be very nice to see an official release.
January 23, 2025 at 10:19 PM
Bit of a long shot, but is there any hope you might reconsider and release security baselines in GPO format (in Security Compliance Toolkit)? Seeing this requested a fair bit on Reddit and other places and there's a 3rd party version on GitHub. But would ofc be very nice to see an official release.
Really appreciate your repo and all shared queries, fantastic stuff!
December 7, 2024 at 9:04 AM
Really appreciate your repo and all shared queries, fantastic stuff!
Will 2025 baselines be released for Security Compliance Toolkit/Policy Analyzer as well? (For those who can't switch to OSConfig)
December 3, 2024 at 10:28 PM
Will 2025 baselines be released for Security Compliance Toolkit/Policy Analyzer as well? (For those who can't switch to OSConfig)
Good rendition of that song but the best version by far is still the one by the Norwegian band Hurra Torpedo (available on YT).
November 29, 2024 at 9:23 PM
Good rendition of that song but the best version by far is still the one by the Norwegian band Hurra Torpedo (available on YT).