Anything About IT

Learning, Building, Sharing

Microsoft Defender for Endpoint - Security Settings Management Internals 0x1

A technical walkthrough of how Defender for Endpoint Security Settings Management works internally on Windows Server, including Entra device objects and dynamic group targeting.

Posted by Alex Verboon on Sunday, April 28, 2024

Users can create AzureAD tenants

Review and monitor the Azure AD setting that allows users to create new tenants, with KQL detection queries.

Posted by Alex Verboon on Tuesday, November 22, 2022

Collecting AzureAD User Authentication Method Information

Collect Azure AD user authentication methods using Microsoft Graph PowerShell for MFA and passwordless analysis.

Posted by Alex Verboon on Sunday, February 7, 2021

Windows 7 Hybrid Join and MFA ramblings

Today I ran into an issue where Windows 7 would not hybrid join as expected.

Posted by Alex Verboon on Tuesday, February 5, 2019

Anything About IT

LAST POSTS