How to start working with Attack Surface Reduction rules like a boss

preview_player
Показать описание
The modern IT Admin needs to accept that they will do more and more security related actions.
The modern world requires us to take part of defending our business against bad guys.
Kent and I discuss the new world using Microsoft Intune and Microsoft Defender for Endpoint together.

Why should we use Attack Surface reduction rules?
It sounds difficult to setup, but is it?
What kind of rules do we have available?
How do I get started?
How do I get ASR rolled out?

Don't be afraid. We got you covered!

Get much more info in this interview with Microsoft Regional Director Kent Agerlund.

Twitter:

Linkedin:

#MDE #msintune #AttackSurfaceReduction
  1. MSEndpointMgr - Jungling the Cloud
  2. microsoft security
  3. attack surface reduction
  4. cloud security
  5. Defender for endpoint
  6. Microsoft Intune
Рекомендации по теме
How To Start 0:10:01

How To Start Working Out | Life Changing 2023

HOW TO START 0:11:38

HOW TO START WORKING OUT IN 2024: how to workout, be consistent, eat healthy & change your minds...

How to Start 0:01:35

How to Start Working Out

how to *actually* 0:09:23

how to *actually* START working out (from a lazy girl)⭐️ | aesthetic vlog & productive day

How to Start 0:07:47

How to Start Working Hard when you have No Routine!

How To Start 0:11:36

How To Start A Business While Working A 9 to 5

The BEST WAY 0:13:50

The BEST WAY TO START WORKING OUT FOR BEGINNERS

how to *actually* 0:20:29

how to *actually* START working out in 2024 | how to stick to it, be disciplined & fix your mind...

Start working like 0:00:44

Start working like an entrepreneur with one simple hack 🤝🏽

How to Start 0:11:46

How to Start Working Out 2024: Ultimate Fitness Journey Guide

5 TIPS to 0:14:11

5 TIPS to START working out after 40 | Approach training the RIGHT way

HOW TO START 0:14:26

HOW TO START WORKING WITH DEITIES - DEITY WORK

How to start 0:07:06

How to start working out | Brittany Daniel

When Does No 0:11:37

When Does No Contact Start Working?

What made you 0:00:13

What made you to start working out ?

How To Start 0:09:26

How To Start A Business While Working A 9 to 5

How to Start 0:10:39

How to Start Working in the UK + MEETUP INFO | doyouknowellie

HOW TO start 0:14:36

HOW TO start working with a deity

How to Start 0:05:36

How to Start Working Out as a Beginner (The Habit of Exercise)

How to Start 0:03:07

How to Start Working out & Stick to it (The Importance of Planning your Workouts) 'E02&apos...

MOTIVATION TO START 0:40:51

MOTIVATION TO START WORKING OUT IN 2024 | getting back on track & starting your fitness journey ...

How to Start 0:06:30

How to Start working on your own Motorcycle | Feat. Killswitch Queen

How To Start 0:17:20

How To Start Working Out As A Complete Beginner AFTER 50!

How To Start 0:11:50

How To Start Working In The Fashion Industry | 5 EASY STEPS

Комментарии
Автор

Thank you both, excellent walkthrough.

karthikeyanv
Автор

It always amazes me how much MSFT is NOT aligned in regards to best practices. The speaker advice goes like this "don't play around with ring1, ring2 deploy to all". At the same time offical ASR docs state the opposite O_o.

edemfromeden
Автор

Hi, thank you for the informative video. I have a question that wasn't answered by Microsoft either. Sometimes, certain executable files that attempt to access LSASS are blocked on some devices, even though these files can run without issues on other devices. What could be the reason behind this if the file isn't malicious?

Rahgozar
Автор

@MSEndpointMgr


Do we need to enable cloud block level as high to receive the toast notifications on the enduser device level for asr warn mode .Is this any prerequisiste ? Looking for assistance pls since im not receiving the notifications which allow me to bypass despite configuring warn mode

aneeshnicola