View profile

Microsoft Defender Weekly Wrap - Issue #50

Microsoft Defender Weekly Wrap
Microsoft Defender Weekly Wrap - Issue #50
By Microsoft Defender Weekly Wrap • Issue #50 • View online
Happy Friday all!
This newsletter is 50!
I just want to make it a quick point to thank you all for tuning in and continuing to tune in. This newsletter - and this community - continues to grow by leaps and bounds. Who knew 50 weeks ago that a simple idea like this could swell into something so far reaching and valuable to many of you. I receive commentary frequently from folks that count on this newsletter weekly and participate heavily in the associated LinkedIn group.
Your community patronage is amazing and always appreciated. Remember, if you see something you like in the newsletter content don’t keep it to yourself. Share it with someone that needs it. That’s how we continue to grow.
GitLab Survey - Defender for DevOps GitLab Integration
The Defender for DevOps team is looking to broaden the Microsoft Defender for Cloud ecosystem by offering customers the ability to onboard their GitLab resources into Defender for DevOps. If your DevOps team uses GitLab in any capacity, we request your feedback to better understand how you interact with the GitLab platform.
The Must Learn KQL Christmas edition has been relaunched for the holidays! 
Know someone (or yourself) that lives KQL? Could be better than a Christmas Hallmark movie.
All proceeds go to St. Jude.
Even with the purposeful effort to consolidate security portals I think you’ll agree with me that Microsoft still has portal glut. I found the Microsoft Cloud command line this past week and thought I’d share with all of you. If you’ve not seen this already, you’ll thank me for the link: https://cmd.ms/
That’s it from me for this week. Have a wonderful weekend and week ahead!
Talk soon.
-Rod

Things to Attend
When Threats Occur Beyond MDR Security Workflows | BlueVoyant
Changing the Game with KQL
Things that are Related
Ep.S4E1 - Ann Johnson - Corporate Vice President - Security, Compliance, & Identity at Microsoft - CISO's Secrets
Identifying cyberthreats quickly with proactive security testing - Microsoft Security Blog
Microsoft Security Insights Show, Episode 126
Microsoft Security tips for mitigating risk in mergers and acquisitions - Microsoft Security Blog
Create Emergency Access Accounts for AAD and Use Log Analytics to Monitor Sign-ins from them
KQL’s mv-apply command – Yet Another Security Blog
Things in Techcommunity
Azure Security baseline for Defender for Cloud - Microsoft Community Hub
Skype for Business in MDCA? - Microsoft Community Hub
Things to Have
Microsoft-Defender-for-Cloud/Powershell scripts/Remove Log Analytics Agent At Scale at main · Azure/Microsoft-Defender-for-Cloud · GitHub
Hunting-Queries-Detection-Rules/DFIR at main · Bert-JanP/Hunting-Queries-Detection-Rules · GitHub
GitHub - reprise99/kql-for-dfir: A guide to using Azure Data Explorer and KQL for DFIR
Things from Partners
Guide: The Ultimate Guide To Maximizing Microsoft Security ROI - Difenda
Managed Detection and Response for Operational Technology (MDR for OT) on Vimeo
Defender for Cloud Things
BLOG: New OpenSSL v3 vulnerability: prepare with Microsoft Defender for Cloud - Microsoft Community Hub
Defender for Endpoint Things
BLOG: Stopping C2 communications in human-operated ransomware through network protection - Microsoft Security Blog
BLOG: Microsoft Defender for Endpoint series – Configure AV/ next-generation protection – Part4
365 Defender Things
BLOG: How to Use Microsoft 365 Defender and Sentinel to Defend Against Zero Day Threats: Part I
BLOG: Monthly news - October 2022 - Microsoft Community Hub
BLOG: Using Microsoft Security APIs for Incident Response - Part 2 - Microsoft Community Hub
Defender for Identity Things
VIDEO: Microsoft Defender for Identity (Part 1) - Offering, Architecture & Deployment
VIDEO: Microsoft Defender for Identity (Part 2) - Attack Simulation and Detection
Defender for Cloud Apps Things
VIDEO: Protecting cloud apps in Microsoft 365 Defender
BLOG: Introducing the Microsoft Defender for Cloud Apps data protection series - Microsoft Community Hub
Defender for Office Things
VIDEO: Attack Simulation Training | Virtual Ninja Training with Heike Ritter
BLOG: Microsoft announces partnership with SANS Institute - Microsoft Community Hub
BLOG: Build custom email security reporting with Microsoft Defender for Office 365 and PowerBI - Microsoft Community Hub
Microsoft Purview Things
BLOG: Catalog Adoption: Discover more with Data estate insights in Microsoft Purview - Microsoft Community Hub
Windows Defender Things
BLOG: Guest Configuration Artifacts and Examples
BLOG: Announcing enhanced control for configuring Firewall rules with Windows Defender - Microsoft Community Hub
Did you enjoy this issue?
Microsoft Defender Weekly Wrap

The weekly Microsoft Defender Weekly Wrap newsletter helps uncover the new and important features and news for Microsoft's Defender-branded security tools.

In order to unsubscribe, click here.
If you were forwarded this newsletter and you like it, you can subscribe here.
Powered by Revue