Workplace Ninja's Blog
Our goal is to share knowledge with the community and to make Workplace Management with Microsoft Technologies simpler for everybody. We wish you happy reading!
Featured Posts
SOC Monitor wall – Build your Content (Part 3)
In this blog post, I share how the dedicated workbooks could look like regarding their content. Note: During the analysis of a specific high-severity security incident in a customer environment you might want to display specific content on the SOC wall screen. Link to other Parts: Planning the Setup Develop
SOC Monitor wall – Planning the Setup (Part 1)
The big plus working in a SOC is the possibility to be on-site with other Security Analysts rather than being separated in the home office. Working in a MSSP SOC means to keep an eye on multiple customer SIEM’s simultaneously in terms of security incidents and anomalies/availability of mandatory log
Latest Posts
Monitor Windows Hello and AAD Hybrid join enrollment with MEMCM
Dsregcmd.exe is one of the most important troubleshooting tools on a Windows device when working with Azure AD Hybrid Join or Windows Hello. But this tool is only available as a command line tool and not in PowerShell. I wrote a translation function to change that. The Get-DsRegStatus function can
Lessons Learned: Azure AD Conditional Access
Azure AD Conditional Access is one of the most named features which customer implement to protect their environments. But as with many cloud features at first glance it looks really simple to implement but then the complexity comes visible during rollout. Many customers activating it without thinking what the impact
Workplace Ninja Summit 2020 moves to 2021
Dear all, In consideration of the extraordinary health crisis related to COVID-19 and the uncertainty about summer events, we have to postpone the Workplace Ninja Summit with a heavy heart to 2021. We have put a lot of passion into the organization of this event and the more difficult it is now to make this
MSIX Commander 10.7.5 released with contributions by Tim Mangan and now available as AppInstaller with AutoUpdate
It is again time for a new release of the MSIX Commander. But this time it is a very special release, at least for me. Because this time, a got some contribution to it by Tim Mangan. Tim was so kind to add two nice features to it. But more
Edge Version 81 now supports Windows Information Protection
Introduced a long time ago, Windows Information Protection (WIP) still lives in a niche of configurations that only very few actually use. Which is a shame, as its very powerful and easy(-ish) to configure. You can read everything about it in Microsofts documentation for the feature. One thing that was
Disable Automatic Updates of Windows Store Apps on your packaging machine
While repackaging, one of the most important things to have, is a quiet packaging machine. The same applies to a machine where you try to analyze a problem with procmon. And by quiet I do not mean to avoid a noisy fan or hard disk. I talk about unnecessary background