KQL - Kategorie - Cloudbrothers

KQL

2022

Use Unified Sign-In logs in Advanced Hunting 07-11

Why using a FIDO2 security key is important 04-10

Azure Attack Paths 03-22

Detect and alert on unusual high phish or malware email volume 03-07

Current limits of Defender AV Tamper Protection 02-15

Defender for Endpoint - Did the Antivirus scan complete? 01-28

2021

Änderungen an sensitiven on-Prem Gruppen mit MDI alarmieren 11-05

Automatisch C2 traffic auf Endgeräten erkennen 10-18

Bypass sensitivity label restrictions with mobile Edge and conditional access policies 08-30

Create persistent Defender AV exclusions and circumvent Defender for Endpoint detection 08-04

1
2
3