Browsed by
Category: Endpoint Security

Microsoft Defender PowerShell

Microsoft Defender PowerShell

Today’s quick blog provides some useful PowerShell commands for managing Microsoft Defender for Endpoint preferences. I have found these commands really helpful so I can get applications working on my lab machines and then obtain all the settings ready for deployment. I manage Defender for Endpoint with Intune, but this blog applies to anyone using Defender for Endpoint. You can learn more about Defender in Intune here Manage Microsoft Defender for Endpoint using Intune | Microsoft Learn Background When I…

Read More Read More

Event ID 1121 – Exploit Guard – Microsoft Intune

Event ID 1121 – Exploit Guard – Microsoft Intune

Today I was getting Event ID 1121 in Windows Event Viewer while managing Windows Defender through Microsoft Intune. It took me a little bit of time to track down the exact cause as Microsoft have removed the GUIDs from the descriptions in the policy properties. I thought it would be a good idea to give an overview and include some useful references. Background Firstly, this blog applies to those running Attack Surface Reduction (ASR) through Microsoft Intune. These settings can…

Read More Read More

Fine Grained Password Policy Setup – Active Directory

Fine Grained Password Policy Setup – Active Directory

This post is all about how to setup Fine Grained Password Policy (FGPP) in On Premise Active Directory. This may sound a little antiquated with the rapid uptake of Azure Active Directory (AAD) and all of its wonderful account security features, but lets not forget, for most organisations a hybrid model is the best they can achieve right now, so its important to make sure you are making the most of the security policies you have available. What is Fine…

Read More Read More

Exchange Online – Setup Anti-Spoofing for Free

Exchange Online – Setup Anti-Spoofing for Free

I hear you, “Free, that doesn’t sound right!?!” Ok, I admit, sort of free. You need to have an Exchange online subscription for a start which is going to cost you. But the key point I am making here is more around not needing to pay for Enterprise Mobility and Security (EM+S) or E5 licensing to get the basic functionality of Anti-spoofing defences. Its going to take a lot of manual maintenance and setup, but, its costing you nothing more…

Read More Read More

Using FSRM to Protect Against Ransomware

Using FSRM to Protect Against Ransomware

This blog post will show you how to use a freely available feature of Windows Server to increase your protection against ransomware attacks. The solution here is not something that you rely on as being your ransomware protection, but, as its free and easy to setup, there is no reason why it can’t form part of a suite of measures you can introduce to protect your environment from both accidental and malicious threats. Before we begin, I need to give…

Read More Read More

Microsoft Excel Query could not be started because it isn’t installed

Microsoft Excel Query could not be started because it isn’t installed

I thought I would write this one up as it took a little bit of time to figure out the answer to this problem, and there are many perfectly valid solutions out there that resolve this error, except, if you are like me and make use of the Microsoft Security Baselines for Office, non of those answers would have helped…and here is why I am very much of the opinion that no matter how small your business or indeed how…

Read More Read More