Setting up a radius server for Azure AD joined devices and 802.1x | Nicola Suter (nicolonsky.ch) Paid for -> https://www.securew2.com/blog/azure-ad-802-1x https://katystech.blog/mem/intune-8021x-pkcs User Auth Solution https://katystech.blog/mem/intune-8021x-pkcs NDES and […]
Category: Research
Research Undertaken
Internet Information Services (IIS) Securing Best Prac \ Website Headers
ASPNET \ Web Server \ Misconfiguration: Missing Error HandlingDisable Detailed errors in IISPermissions-Policyfullscreen=() Cache-Controlprivate, no-storeReferrer-Policystrict-origin-when-cross-originwe can conclude that the default setting deals with most of the security X-XSS-Protection1; mode=block X-Content-Type-OptionsnosniffStrict-Transport-Securitymax-age=31536000; […]
365 Backup Products
https://afi.ai/https://www.n-able.com/products/cove-data-protectionhttps://www.backupify.com/365 Veeam ( Needs Server ) Synology Nas ( Needs Onprem )
Windows Defender Best Practice
https://github.com/directorcia/Office365/blob/master/win10-def-get.ps1 -Enable App Governance -Enable Defender for Identity -Turn all Advanced Features for Endpoints – Enable default Policies for App Discovery
Force Sync of Intune Via Powershell Locally
Bad NameID generated by SAML \ Ninite
Setup User in Ninite AS well as in SAML App
Onprem Server Windows Defender via ARC
failed the dynamic code trust verification with error code of 0xC0E90002
Code Integrity determined that \Device\HarddiskVolume3\Windows\LTSvc\LTSVC.exe is trying to load In_Memory_PE_File which failed the dynamic code trust verification with error code of 0xC0E90002. Beginning with Windows 10, version […]
What Units are AggregatedDiskDataRead and AggregatedDiskDataWritten
‘ProgrammaticUnits’ : ‘bytes * 10^6’ //String byte * (10^6) = 1 megabyte
HSTS Enable
Server 1709 And above : https://learn.microsoft.com/en-us/iis/configuration/system.applicationhost/sites/site/hsts Below : Enter the following values in the Add Custom HTTP Response Headers dialog box:<Name: Strict-Transport-Security Value: max-age=31536000 Close the IIS Manager after […]
Cookies Missing Attributes
The HTTPOnly attribute makes cookies inaccessible to JavaScript. Additionally, the Secure attributeensures that the cookie may only be transmitted over HTTPS. Cookies used by the application didnot […]
IP in Azure AD now incorrectly registered to Tashkent, Toshkent City, UZ
“It’s a known issue that Microsoft relies on a Geolocation API that sometimes incorrectly maps IPs and locations, we’ll report this to related team to correct this. Per […]