In the previous post I explained how to hunt for exact same scenario using CrowdStrike. I thought it’d be fun to see how would it look like with Microsoft Defender for Endpoint using its Advanced Hunting module and the Kusto query language.
-
Follow
Following
Already have a WordPress.com account? Log in now.
With #infosec at 💔🔐 