
William Francillette
@willthefrenchie
ID: 1562397677408530432
24-08-2022 11:13:37
175 Tweet
145 Followers
135 Following



Microsoft's making it easier for SaaS vendors to integrate with Defender for Cloud Apps (MDA) as part of the code-less Open App Connector Platform. More third party apps in MDA = more visibility in your advanced hunting and automatic governance actions. techcommunity.microsoft.com/t5/microsoft-3…



#MDE now supports #eBPF as a replacement for auditd. This should result in better performance where auditd was overwhelmed. If your machines are in the insider channel and have 101.23062.0005 installed this will automatically turn on in the next days. techcommunity.microsoft.com/t5/microsoft-d…

Graph PowerShell users, do you just connect with the default app? (now that there is more permission control). Or do you create new app registrations for specific tasks? In this blog I look at using Conditional Access to Protect MS Graph PowerShell access ourcloudnetwork.com/protect-micros…






Vincent Le Toux (Paris, France) #MDE is not happy with the latest version of PingCastle -> Thinks it's mimikatz


Entra/Azure AD PIM may not be the security control you think it is. Here's five common mistakes, limitations, and misunderstandings you want to avoid tripping up with. Privileged Identity Management (PIM) – Common Microsoft 365 Security Mistakes Series: campbell.scot/pim-common-mic…


