Session
Power of attack simulations in Microsoft Unified Security Operations
During a hands-on lab, we simulated an attack on an isolated AD DS domain controller and Windows device using a Fileless PowerShell script with process injection and SMB recon. My goal was to investigate, remediate, and resolve the incident effectively with threat hunting activity. I utilized Unified Security Operations with Microsoft Sentinel, Defender XDR and Security Copilot for comprehensive security measures and automatic attack disruption.
Uros Babic
Security Architect at Crayon, Microsoft Security MVP, MCT
Belgrade, Serbia
Links
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top