Derk van der WoudeMicrosoft Security Exposure Management #XSPMMicrosoft Security Exposure Management is a new Microsoft Security product in the Threat prevention layer of cybersecurity to provide…6 min read·Mar 13, 2024----
Derk van der WoudeEntra ID User Reconnaissance and how to Protect against Entra ID User ReconEntra ID (previous Azure Active Directory / Azure AD) is the Online version of Active Directory to access (authenticate and authorize)…6 min read·Feb 17, 2024----
Derk van der WoudeActive Directory reconnaissance and Microsoft Defender XDR detectionsUpdated blog (from 2020) which describes different Active Directory reconnaissance methods (MS-DOS, PowerShell and PowerSploit) to read the…5 min read·Feb 14, 2024----
Derk van der WoudeMDE | DeceptionDeception is a new feature in Microsoft Defender for Endpoint. This blog provides a high level overview of the new feature. Deception…4 min read·Nov 16, 2023----
Derk van der WoudeHow to setup your own Microsoft Defender for IoT labThis blog is how to setup a physical lab environment for Microsoft Defender for IoT to get experience in deployment and usage of the…4 min read·Nov 2, 2023----
Derk van der WoudeHow to use Microsoft Entra | Internet Access to prevent AiTM attack(s)While BEC (Business E-mail Compromise) attacks are prevented by Number Matching Multi Factor Authentication (enabled on global scale by…4 min read·Aug 1, 2023----
Derk van der WoudeHow to protect against BEC & AiTM attacks via Microsoft 365 Defender | Automatic Attack DisruptionThe number of BEC (Business Email Compromise) and AiTM (Adversary in The Middle) attacks are growing significantly since 2023 (source…5 min read·Jul 3, 2023--3--3
Derk van der WoudeExploit IoT devices and how to prevent via MDE | Enterprise IoTMDE | Device Discovery3 min read·Apr 21, 2023----
Derk van der WoudeConnect Microsoft Defender Threat Intelligence (MDTI ) to Microsoft Sentinel and enrich Incidents…Microsoft Defender Threat Intelligence (MDTI) is the TI solution from Microsoft (previous RiskIQ) to detect 0-day and pre-firewall threats…6 min read·Apr 5, 2023----
Derk van der WoudeConnect Microsoft Defender EASM to Microsoft Sentinel for Incident enrichmentMicrosoft Defender EASM (External Attack Surface Management) is the Microsoft (one of the two products from the RiskIQ acquisition, the 2nd…4 min read·Mar 26, 2023----