Great jobs with these articles. Just one question, is there any way to
configure Windows logging to filter malicious C2 domains or can this
only been done by third party software?Thanks in advance.
@Anwar Mahmood Something like that: section subsection parameter value
Assignments User and Groups include all users exclude Service
principals, managed identities, workload identities and similar
token-based accounts used for automation are excluded cloud apps or
actions include Azure portal, CLI, ...
Latest Comments