IT-Pirate - Page 2 of 6 - Ahoy Sailor! Welcome Aboard!

Attack Simulator for Office 365 Threat Intelligence – Spear Phishing Attack

Captain / 24. April 2018 / 0 Comments / Office365, SecurityTagged: AttackSimulator, Office365, Security

Pirate,

in the first part we had a look into attack simulator and the included scenarios. We discussed which scenario does what in detail and what you need to set up as a preparation. In this blog post we will check out the spear phishing attack that is meant to harvest credentials. Spear phishing is a very common e-mail spoofing attack scenario that targets a specific individual or organization with the goal to get access to sensitive information. Furthermore I have seen this attack method with the intend to install malware on a targeted user’s computer.

Attack Simulator for Office 365 Threat Intelligence – Overview and Preparation

Captain / 23. April 2018 / 0 Comments / Office365, SecurityTagged: AttackSimulator, MFA, Office365

Pirate,

Email spam is once again the most popular choice for sending out malware. Spam has been one of the main infection vectors for decades. During the past few years, it’s gained more popularity against other vectors, as systems are getting more secure against software exploits and vulnerabilities. A recent report of F-Secure reports that spam email click rates have gone up from the 13.4% recorded in the second half of 2017 to 14.2% recorded in the first half of the year. To protect against these attack vectors is nearly impossible as a majority of attacks leads to web pages never seen before and due to the the sheer infinite range of these attack vectors. The only thing that really improves our security level is permanent education of our users.

On ‎02-21-2018 Microsoft has announced the Public Preview of Attack Simulator for Office 365 Threat Intelligence. In preparation of some customer workshops I had a first look into the product that I want to share with you.

Windows Defender ATP: Tenant creation – Part 1

Captain / 30. January 2018 / 0 Comments / Windows 10, Windows Defender ATP

Pirate,

within the last year, we have focused on Windows Defender ATP and ran through several PoCs. I’ve prepared several scenarios for you, where I will guide you trough WDATP from the tenant creation to high end scenarios. In this first post, we will go through the tenant creation process itself.

Windows 10 AppLocker Policies still affect after disabling the service

Captain / 14. January 2018 / 10 Comments / Windows 10

Pirate,

from time to time I consult customers in the configuration of Windows 10 AppLocker. I really love AppLocker because it’s super simple, reliable and enterprise ready in terms of administrative overhead. Furthermore it’s the recommended tool for the configuration of unwanted / not needed apps within Windows 10. But sometimes AppLocker kind of “breaks” my Windows 10 start menu and stops Apps from strarting up. Although the AppLocker enforcement is disabled.

The People’s History of ConfigMgr – Happy 25th Birthday ConfigMgr

Captain / 3. December 2017 / 0 Comments / Community, ConfigMgr

Pirate,

I’m super happy to be part of the “The People’s History of ConfigMgr”. It’s the second half of the “ConfigMgr @ 25” documentary series, and this story is told solely by the ConfigMgr community. For the first time on camera and on the record, a wide variety of ConfigMgr fellows talk openly as they reflect on their good (and terrible) experiences, how it changed the way they work, and what ConfigMgr has meant to their careers — and the industry.

Microsoft Ignite 2017 – Recap

Captain / 3. December 2017 / 0 Comments / Community

Pirate,

I finally found the time to wrap up Microsoft Ignite 2017 in Orlando / Florida. I had the great honor to have three different stage experiences. But for sure the breakout session in a fully packed room was the absolute highlight.

Experts Live Europe 2017 – Review

Captain / 31. August 2017 / 0 Comments / Community

Pirate,

I attended Experts Live Europe 2017 (ELEU) in Berlin August 23th – 25th. Experts Live is a series of events that takes place in several countries all over the world. The event ELEU run for the first time although Marcel and his team host the conference since 2012. Back in the days it was called System Center Universe. I’m pretty sure you’ve heared about that before.

Windows 10 – Configure Windows Defender Application Guard for Microsoft Edge

Captain / 6. August 2017 / 0 Comments / Security, Windows 10

Pirate,

The current Windows 10 Insider Build 16257 includes upcoming features of Redstone 3 and Windows 10 1709. Also included are all the features of the Windows Defender Application Guard (WDAG). The feature will work like a sandbox. The feature is intended to prevent malicious content and downloaded files from harming the system. After surfing, the isolated tab closes and clears all malicious code together with the temporary container. Admins can already create Whitelists from harmless pages that start in conventional Edge windows. Pages not listed then open in an application guard container within Edge.

Windows10 – Configure Windows Settings Menu

Captain / 25. April 2017 / 1 Comment / Windows 10

Pirate,

With the Windows 10 Creators Update (1703) we have received a possibility to configure the “Windows Settings”. The Windows settings are the new, unified system control menu that was introduced with Windows 10. This menu is particularly critical because many of the Enterprise’s unsuitable features can be configured through this menu. This created the need to remove or hide specific settings.

Microsoft Tech Summit: Implement Windows as a Service

Captain / 17. February 2017 / 0 Comments / Community, Windows 10

Pirate,

I had the honor to present a session on “Microsoft Tech Summit“ serie or „Microsoft Cloud Summit“ in Frankfurt. My session was about „Implement Windows as a Service: Understand how to do it“.

Home

Pirate,

Pirate,