Olivia
Online
Pinned Tweet
Some #deep #tech #house #music from my last gig @ Superfreak - Club Auslage, Vienna - enjoy ☺️ https://t.co/YYP2syoavG #SoundCloud
This is a weekly reminder that users (nor agents) should hold the privilege to run unvetted code from anywhere. It's the single biggest mistake orgs have made and keep making against the principle of least privilege. The time to start controlling what code to allow is now! #acfb
@NathanMcNulty I also like the built-in browser rendering, no need for Adobe, PDF X-Change would also be an alternative ☺️ but if Adobe is in use, wouldn't App Control mitigate an attack with that CVE? Not sure if AppLocker could do it, too
@wdormann @NathanMcNulty @TheWMIGuy @arekfurt Are these VMs Domain-Joined or EntraID-Joined? "Smart App Control is disabled on devices enrolled in enterprise management. We suggest enterprises running line-of-business applications continue to use App Control for Business." https://t.co/VJWWM7W0eJ
Who to follow
Martin Bengtsson 
@mwbengtsson
5 x Microsoft MVP (2019 - 2024) #MSIntune | #ConfigMgr | #Windows11 | #Microsoft365 | #PowerShell | #Security | Blogging on https://t.co/fDZQbZJXcH
Tobias Sandberg
@tobiasssandberg
Consult at @XenitAB with focus on #Microsoft products like Microsoft Intune.
Chris J - @[email protected]
@rattis
Threat Intel, OSINT, LockSport, PhySec, kettlebells, martial arts, parkour, Amateur Radio/SDR.
MS: Cybersecurity, MBA, GC: DFIR.
These are my words.
@TheWMIGuy @NathanMcNulty So without the ISG option it would be blocked or would Store Apps still be able to be installed (supposing that winget is not deactivated/controlled per GPO)? As i remember there is the additional option "Enforce Store Applications" in App Control Policies?
@techspence Would be awesome if every company would just implement the official MS Edge Security baseline, where browser extensions are blocked by default ☺️
@UK_Daniel_Card UnigetUI is excellent - i use it as managed installer in App Control (fka WDAC) ☺️
@UK_Daniel_Card @therealshodan One question - if DEVs only updated over WinGet, should it be safe? Because Winget always got it from GitHub, but not sure if that was a 'safer' update path? 😵💫
@UK_Daniel_Card @therealshodan Thanks for all the infos here, and very interesting and excellent conclusion 😎 i use VS Code instead of Notepad++ for nearly 2 years, did not regret it...
@KI_NunoCarvalho @IAMERICAbooted It's still possible with Intune as Managed Installer and the default baseline from MS, Pahrules Supplemental Policy to Program Files, Program Data and Windows Folders, and installing software with a managed installer like Intune, ConfigManager, UnigetUI - depends on usecases ☺️
@IAMERICAbooted From my AppLocker experience since nearly 12 years i can confirm, that it was a very painful and long way to get it in enforced state 😄 the most important thing is to have a dedicated team for packaging and deployment
@UK_Daniel_Card @m0bilej0n @Mister_MDM @en4rab You're right 😄 seems that security baselining for Windows is not his favorite topic 😅
@UK_Daniel_Card @m0bilej0n @Mister_MDM @en4rab Wow, does this guy in the video really recommend to basically turn off secure boot, credential guard, HVCI or Windows Hello (for Business) in Windows 11? Or device based PKI-certificates binded to TPM for Always-On VPNV2? Very interesting 😃
@UK_Daniel_Card @IAMERICAbooted @DebugPrivilege Yeah, i know that DAs hate PAWs and worldwide not many will use them 😂 it was very hard work to implement this in our company, but after years passed by, they learned to cope with it ☺️
@UK_Daniel_Card @IAMERICAbooted @DebugPrivilege Well, at least every AD Domain Admin should also know how to use and implement a Tier0 PAW - if he wants to get hired 😋
@NathanMcNulty And with App Control you're safe because of the default enabled feature 'Runtime FilePath Rule Protection' ☺️
@MyNameIsMurray @CyberCakeX @NathanMcNulty @CynicLib App Control with managed installer is one of the best features, ISG is interesting, too. We additionally test UnigetUI as another managed installer for a DEV scenario, works perfect. And App Control Manager from @CyberCakeX is an amazing tool, highly recommended 👌🏻
@NathanMcNulty Hello is one of the best things Microsoft ever invented ☺️ i read that ESS should also be possible for external devices (only fingerprint i suppose) in the future 😊 https://t.co/OtEV7DppgQ
Last Seen Users on Sotwe
kalaisexy
Seen from Malaysia
indo
Seen from Indonesia
🎉🤩👨❤️💋👨 SUKIE CNX 🎉🤩👨❤️💋👨
Seen from United States
Andis Hot
Seen from Indonesia
Üniversiteli Yonca
Seen from Turkey
cevelo
Seen from Indonesia
Jgdbju nvfjjf
Seen from Turkey
Muhtar
Seen from Turkey
Pedjuang
Seen from Indonesia
Persia 🌺🌴
Seen from United States
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers