Derk van der WoudeDefender for IoT sensor accessThe Microsoft Defender for IoT | OT Sensor is a virtual or physical appliance connected to the OT network via a SPAN port or TAP device to…3 min read·May 3, 2024----
Derk van der WoudeMicrosoft Security Exposure Management #XSPMMicrosoft Security Exposure Management is a new Microsoft Security product in the Threat prevention layer of cybersecurity to provide…6 min read·Mar 13, 2024----
Derk van der WoudeEntra ID User Reconnaissance and how to Protect against Entra ID User ReconEntra ID (previous Azure Active Directory / Azure AD) is the Online version of Active Directory to access (authenticate and authorize)…6 min read·Feb 17, 2024----
Derk van der WoudeActive Directory reconnaissance and Microsoft Defender XDR detectionsUpdated blog (from 2020) which describes different Active Directory reconnaissance methods (MS-DOS, PowerShell and PowerSploit) to read the…5 min read·Feb 14, 2024----
Derk van der WoudeMDE | DeceptionDeception is a new feature in Microsoft Defender for Endpoint. This blog provides a high level overview of the new feature. Deception…4 min read·Nov 16, 2023--1--1
Derk van der WoudeHow to setup your own Microsoft Defender for IoT labThis blog is how to setup a physical lab environment for Microsoft Defender for IoT to get experience in deployment and usage of the…4 min read·Nov 2, 2023----
Derk van der WoudeHow to use Microsoft Entra | Internet Access to prevent AiTM attack(s)While BEC (Business E-mail Compromise) attacks are prevented by Number Matching Multi Factor Authentication (enabled on global scale by…4 min read·Aug 1, 2023----
Derk van der WoudeHow to protect against BEC & AiTM attacks via Microsoft 365 Defender | Automatic Attack DisruptionThe number of BEC (Business Email Compromise) and AiTM (Adversary in The Middle) attacks are growing significantly since 2023 (source…5 min read·Jul 3, 2023--3--3
Derk van der WoudeExploit IoT devices and how to prevent via MDE | Enterprise IoTMDE | Device Discovery3 min read·Apr 21, 2023----
Derk van der WoudeConnect Microsoft Defender Threat Intelligence (MDTI ) to Microsoft Sentinel and enrich Incidents…Microsoft Defender Threat Intelligence (MDTI) is the TI solution from Microsoft (previous RiskIQ) to detect 0-day and pre-firewall threats…6 min read·Apr 5, 2023----