Defender for Indetity\ Cloud Apps\Endpoint\Defender XDR\Defender for Office 365\App Governance\AAD Identity Protection\DLP Vulnerability Identity Defender for Cloud ( Resources in Azure Subscription )
Category: Research
Research Undertaken
run failed [Errno 2] No such file or directory: ‘getfacl’: ‘getfacl’
PUA Protection ( Detect and block potentially unwanted applications )
sqlcmd.exe – “The system cannot find the file specified”
When installing SQLCMD.exe with Winget or copying the file manually to c:\Windows\System32\sqlcmd.exe when trying to open it CMD gives you two lines The system cannot find the […]
Microsoft 365 Defender and Mimecast Together
We recommend making sure you disable Microsoft Defender safe links as this can conflict with Mimecast URL protection. For more information I recommend checking out our KB […]
Microsoft 365 has been configured to prevent individual acquisition and execution of Office Store Add-Ins
Happens when this is disabled To Resolve Deploy Apps Manually After deploying manually had a user still not being able to get the App on RDS , […]
Delete \ Whipe Microsoft 365 Archive via Powershell
Connect-ExchangeOnline Disable-Mailbox [email protected] -Archive Set-Mailbox [email protected] -RemoveDisabledArchive Enable-Mailbox [email protected] -Archive
SPF Record Extension
Move the SPF Records to an additional subdomain e.e.g Note: You can create more records as required. ( spf1\spf2 ) Then amend the initial SPF as follows:domain.com TXTv=spf1 include:spf1.domain.com -all”
Trace SQL CPU Performance
Random Entries in the Hosts File
This is the Deception Rules in Defender https://learn.microsoft.com/en-us/defender-xdr/deception-overview