all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Using MS Defender to audit Macro usage

Add to bookmarks
July 27, 2022, 12:49 p.m. | /u/zztr

cybersecurity www.reddit.com

I am trying to determine the best way to audit when Macros are executed using Defender. I tried using the Advanced Hunting with Defender E5 as a test to see when the registry was updated with Trusted Documents but it was giving me way to many responses to be any form of useful. Maybe I just didn't tune it enough.

We have the restrictions in place about not letting MS docs create child processes and all of that stuff in …

audit cybersecurity defender macro

Visit resource

More from www.reddit.com / cybersecurity

Russian hackers attack Texas water facility 7 hours ago | www.reddit.com
cybersecurity
Are We Ready for a Cyber Attack on Food and Farming? : Authorities are working … 10 hours ago | www.reddit.com
agriculture attack cyber cybersecurity +9
2x Actively Exploited Cisco CVEs in Adaptive Security Compliance (ASA) & Firepower Threat Defense (FTD) 11 hours ago | www.reddit.com
actively exploited adaptive security asa cisco +15
Sr. Analyst or Engineer Role? 12 hours ago | www.reddit.com
analyst ask cybersecurity engineer +8
Ring customers get $5.6 million in privacy breach settlement 13 hours ago | www.reddit.com
breach customers cybersecurity privacy +3
Nontechnical GRC 13 hours ago | www.reddit.com
auditor aware controls cybersecurity +8
How to land a Soc Analyst L1 job? 13 hours ago | www.reddit.com
advice analyst blue certifications +10
I attended Gulf Information Security Expo & Conference (GISEC) in Dubai. Why is Splunk the … 14 hours ago | www.reddit.com
analysis assessment companies conference +25
FTC bans non competes. F yeah. 16 hours ago | www.reddit.com
bans cybersecurity ftc non

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Level 1 SOC Analyst

@ Telefonica Tech | Dublin, Ireland
View on infosec-jobs.com

Specialist, Database Security

@ OP Financial Group | Helsinki, FI
View on infosec-jobs.com

Senior Manager, Cyber Offensive Security

@ Edwards Lifesciences | Poland-Remote
View on infosec-jobs.com

Information System Security Officer

@ Booz Allen Hamilton | USA, AL, Huntsville (4200 Rideout Rd SW)
View on infosec-jobs.com

Senior Security Analyst - Protective Security (Open to remote across ANZ)

@ Canva | Sydney, Australia
View on infosec-jobs.com
View more jobs