Pentesting Azure Applications

Pentesting Azure Applications

Author: Matt Burrough

Publisher: No Starch Press

Published: 2018-07-23

Total Pages: 218

ISBN-13: 1593278632

DOWNLOAD EBOOK

A comprehensive guide to penetration testing cloud services deployed with Microsoft Azure, the popular cloud computing service provider used by companies like Warner Brothers and Apple. Pentesting Azure Applications is a comprehensive guide to penetration testing cloud services deployed in Microsoft Azure, the popular cloud computing service provider used by numerous companies. You'll start by learning how to approach a cloud-focused penetration test and how to obtain the proper permissions to execute it; then, you'll learn to perform reconnaissance on an Azure subscription, gain access to Azure Storage accounts, and dig into Azure's Infrastructure as a Service (IaaS). You'll also learn how to: - Uncover weaknesses in virtual machine settings that enable you to acquire passwords, binaries, code, and settings files - Use PowerShell commands to find IP addresses, administrative users, and resource details - Find security issues related to multi-factor authentication and management certificates - Penetrate networks by enumerating firewall rules - Investigate specialized services like Azure Key Vault, Azure Web Apps, and Azure Automation - View logs and security events to find out when you've been caught Packed with sample pentesting scripts, practical advice for completing security assessments, and tips that explain how companies can configure Azure to foil common attacks, Pentesting Azure Applications is a clear overview of how to effectively perform cloud-focused security tests and provide accurate findings and recommendations.


Microsoft 365 Security, Compliance, and Identity Administration

Microsoft 365 Security, Compliance, and Identity Administration

Author: Peter Rising

Publisher: Packt Publishing Ltd

Published: 2023-08-18

Total Pages: 630

ISBN-13: 1804619426

DOWNLOAD EBOOK

Explore expert tips and techniques to effectively manage the security, compliance, and identity features within your Microsoft 365 applications Purchase of the print or Kindle book includes a free PDF eBook Key Features Discover techniques to reap the full potential of Microsoft security and compliance suite Explore a range of strategies for effective security and compliance Gain practical knowledge to resolve real-world challenges Book Description The Microsoft 365 Security, Compliance, and Identity Administration is designed to help you manage, implement, and monitor security and compliance solutions for Microsoft 365 environments. With this book, you'll first configure, administer identity and access within Microsoft 365. You'll learn about hybrid identity, authentication methods, and conditional access policies with Microsoft Intune. Next, you'll discover how RBAC and Azure AD Identity Protection can be used to detect risks and secure information in your organization. You'll also explore concepts such as Microsoft Defender for endpoint and identity, along with threat intelligence. As you progress, you'll uncover additional tools and techniques to configure and manage Microsoft 365, including Azure Information Protection, Data Loss Prevention (DLP), and Microsoft Defender for Cloud Apps. By the end of this book, you'll be well-equipped to manage and implement security measures within your Microsoft 365 suite successfully. What you will learn Get up to speed with implementing and managing identity and access Understand how to employ and manage threat protection Manage Microsoft 365's governance and compliance features Implement and manage information protection techniques Explore best practices for effective configuration and deployment Ensure security and compliance at all levels of Microsoft 365 Who this book is for This book is for IT professionals, administrators, or anyone looking to pursue a career in security administration and wants to enhance their skills in utilizing Microsoft 365 Security Administration. A basic understanding of administration principles of Microsoft 365 and Azure Active Directory is a must. A good grip of on-premises Active Directory will be beneficial.


Exam Ref SC-900 Microsoft Security, Compliance, and Identity Fundamentals

Exam Ref SC-900 Microsoft Security, Compliance, and Identity Fundamentals

Author: Yuri Diogenes

Publisher: Exam Ref

Published: 2021-12-04

Total Pages: 0

ISBN-13: 9780137568109

DOWNLOAD EBOOK

Prepare for Microsoft Exam SC-900 and help demonstrate your real-world knowledge of the fundamentals of security, compliance, and identity (SCI) across cloud-based and related Microsoft services. Designed for business stakeholders, new and existing IT professionals, functional consultants, and students, this Exam Ref focuses on the critical thinking and decision-making acumen needed for success at the Microsoft Certified: Security, Compliance, and Identity Fundamentals level. Focus on the expertise measured by these objectives: * Describe the concepts of security, compliance, and identity * Describe the capabilities of Microsoft identity and access management solutions * Describe the capabilities of Microsoft security solutions * Describe the capabilities of Microsoft compliance solutions This Microsoft Exam Ref: * Organizes its coverage by exam objectives * Features strategic, what-if scenarios to challenge you * Assumes you are a business user, stakeholder, consultant, professional, or student who wants to create holistic, end-to-end solutions with Microsoft security, compliance, and identity technologies About the Exam Exam SC-900 focuses on knowledge needed to describe: security and compliance concepts and methods; identity concepts; Azure AD identity services/types, authentication, access management, identity protection, and governance; Azure, Azure Sentinel, and Microsoft 365 security management; Microsoft 365 Defender threat protection and Intune endpoint security; Microsoft 365 compliance management, information protection, governance, insider risk, eDiscovery, and audit capabilities; and Azure resource governance. About Microsoft Certification Passing this exam fulfills your requirements for the Microsoft Certified: Security, Compliance, and Identity Fundamentals certification, helping to demonstrate your understanding of the fundamentals of security, compliance, and identity (SCI) across cloud-based and related Microsoft services. With this certification, you can move on to earn more advanced related Associate-level role-based certifications. See full details at: microsoft.com/learn


Microsoft 365 Security Administration: MS-500 Exam Guide

Microsoft 365 Security Administration: MS-500 Exam Guide

Author: Peter Rising

Publisher: Packt Publishing Ltd

Published: 2020-06-19

Total Pages: 672

ISBN-13: 1838981306

DOWNLOAD EBOOK

Get up to speed with expert tips and techniques to help you prepare effectively for the MS-500 Exam Key FeaturesGet the right guidance and discover techniques to improve the effectiveness of your studying and prepare for the examExplore a wide variety of strategies for security and complianceGain knowledge that can be applied in real-world situationsBook Description The Microsoft 365 Security Administration (MS-500) exam is designed to measure your ability to perform technical tasks such as managing, implementing, and monitoring security and compliance solutions for Microsoft 365 environments. This book starts by showing you how to configure and administer identity and access within Microsoft 365. You will learn about hybrid identity, authentication methods, and conditional access policies with Microsoft Intune. Next, the book shows you how RBAC and Azure AD Identity Protection can be used to help you detect risks and secure information in your organization. You will also explore concepts, such as Advanced Threat Protection, Windows Defender ATP, and Threat Intelligence. As you progress, you will learn about additional tools and techniques to configure and manage Microsoft 365, including Azure Information Protection, Data Loss Prevention, and Cloud App Discovery and Security. The book also ensures you are well prepared to take the exam by giving you the opportunity to work through a mock paper, topic summaries, illustrations that briefly review key points, and real-world scenarios. By the end of this Microsoft 365 book, you will be able to apply your skills in the real world, while also being well prepared to achieve Microsoft certification. What you will learnGet up to speed with implementing and managing identity and accessUnderstand how to employ and manage threat protectionGet to grips with managing governance and compliance features in Microsoft 365Explore best practices for effective configuration and deploymentImplement and manage information protectionPrepare to pass the Microsoft exam and achieve certification with the help of self-assessment questions and a mock examWho this book is for This Microsoft certification book is designed to help IT professionals, administrators, or anyone looking to pursue a career in security administration by becoming certified with Microsoft's role-based qualification. Those trying to validate their skills and improve their competitive advantage with Microsoft 365 Security Administration will also find this book to be a useful resource.


Microsoft 365 Mobility and Security – Exam Guide MS-101

Microsoft 365 Mobility and Security – Exam Guide MS-101

Author: Nate Chamberlain

Publisher: Packt Publishing Ltd

Published: 2019-11-29

Total Pages: 300

ISBN-13: 1838980016

DOWNLOAD EBOOK

Get up to speed with planning, deploying, and managing Microsoft Office 365 services and gain the skills you need to pass the MS-101 exam Key FeaturesExplore everything from mobile device management and compliance,through to data governance and auditingGet to grips with using Azure advanced threat protection and Azure information protectionLearn effectively through exam-focused practice exercises and mock testsBook Description Exam MS-101: Microsoft 365 Mobility and Security is a part of the Microsoft 365 Certified: Enterprise Administrator Expert certification path designed to help users validate their skills in evaluating, planning, migrating, deploying, and managing Microsoft 365 services. This book will help you implement modern device services, apply Microsoft 365 security and threat management, and manage Microsoft 365 governance and compliance. Written in a succinct way, you’ll explore chapter-wise self-assessment questions, exam tips, and mock exams with answers. You’ll start by implementing mobile device management (MDM) and handling device compliance. You’ll delve into threat detection and management, learning how to manage security reports and configure Microsoft 365 alerts. Later, you’ll discover data loss prevention (DLP) tools to protect data as well as tools for configuring audit logs and policies. The book will also guide you through using Azure Information Protection (AIP) for deploying clients, applying policies, and configuring services and users to enhance data security. Finally, you’ll cover best practices for configuring settings across your tenant to ensure compliance and security. By the end of this book, you’ll have learned to work with Microsoft 365 services and covered the concepts and techniques you need to know to pass the MS-101 exam. What you will learnImplement modern device servicesDiscover tools for configuring audit logs and policiesPlan, deploy, and manage Microsoft 365 services such as MDM and DLPGet up to speed with configuring eDiscovery settings and features to enhance your organization’s ability to mitigate and respond to issuesImplement Microsoft 365 security and threat managementExplore best practices for effectively configuring settingsWho this book is for This book is for IT professionals looking to pass the Microsoft 365 Mobility and Security certification exam. System administrators and network engineers interested in mobility, security, compliance, and supporting technologies will also benefit from this book. Some experience with Microsoft 365, Exchange servers, and PowerShell is necessary.


Exam Ref MS-101 Microsoft 365 Mobility and Security

Exam Ref MS-101 Microsoft 365 Mobility and Security

Author: Brian Svidergol

Publisher: Microsoft Press

Published: 2019-06-12

Total Pages: 456

ISBN-13: 0135574935

DOWNLOAD EBOOK

Prepare for Microsoft Exam MS-101–and help demonstrate your real-world mastery of skills and knowledge needed to manage Microsoft 365 mobility, security, and related administration tasks. Designed for experienced IT professionals, Exam Ref focuses on the critical thinking and decision-making acumen needed for success at the Microsoft Certified Expert level. Focus on the expertise measured by these objectives: Implement modern device services Implement Microsoft 365 security and threat management Manage Microsoft 365 governance and compliance This Microsoft Exam Ref: Organizes its coverage by exam objectives Features strategic, what-if scenarios to challenge you Assumes you are a Microsoft 365 Enterprise Administrator who participates in evaluating, planning, migrating, deploying, and managing Microsoft 365 services About the Exam Exam MS-101 focuses on knowledge needed to implement Mobile Device Management (MDM); manage device compliance; plan for devices and apps; plan Windows 10 deployment; implement Cloud App Security (CAS), threat management, and Windows Defender Advanced Threat Protection (ATP); manage security reports and alerts; configure Data Loss Prevention (DLP); implement Azure Information Protection (AIP); and manage data governance, auditing, and eDiscovery. About Microsoft Certification Passing this exam and Exam MS-100 Microsoft 365 Identity and Services (and earning one Microsoft 365 workload administrator certification or the MCSE: Productivity certification) fulfills your requirements for the Microsoft 365 Certified: Enterprise Administrator Expert certification credential. This demonstrates your ability to evaluate, plan, migrate, deploy, and manage Microsoft 365 services. See full details at: microsoft.com/learn


Microsoft 365 Administrator MS-102 Exam Guide

Microsoft 365 Administrator MS-102 Exam Guide

Author: Aaron Guilmette

Publisher: Packt Publishing Ltd

Published: 2023-12-20

Total Pages: 535

ISBN-13: 1835088031

DOWNLOAD EBOOK

A comprehensive MS-102 exam guide offering practical insights, from provisioning Microsoft 365 to mastering Defender components, ensuring not just exam success but true expertise Purchase of the book unlocks access to web-based exam prep resources like mock exams, flashcards, exam tips, and a free eBook PDF. Key Features Navigate exam topics easily with well-structured and informative content Access online practice tools to enhance exam readiness Boost exam confidence through expert tips and real-world insights Purchase of the book unlocks access to web-based exam prep resources like mock exams, flashcards, exam tips, and a free eBook PDF Book DescriptionThe MS-102: Microsoft 365 Administrator Exam Guide is meticulously crafted to empower readers with practical insights, starting with the essentials of provisioning a Microsoft 365 tenant, configuring identity synchronization and secure access, and deploying key Microsoft 365 Defender components. The book's purpose is clear—to guide professionals through the complexities of the MS-102 exam, ensuring not just exam success but mastery of the subject matter. This comprehensive exam guide comes with lifetime access to supplementary resources on an online platform, including flashcards, mock exams, and exam tips from experts. With unlimited access to the website, you'll have the flexibility to practice as many times as you desire, maximizing your exam readiness. As you progress through each chapter, the book unveils the layers of Microsoft 365 workloads, equipping you with the skills to manage role-based administration, deploy identity synchronization using Entra ID Connect, implement modern authentication methods, manage secure access through Conditional Access policies, and analyze security threats using Microsoft 365 Defender. By the end of this book, you'll have the proficiency to implement data loss prevention, configure information and data protection features, and approach the MS-102 exam with confidence.What you will learn Implement and manage Microsoft 365 tenants Administer users, groups, and contacts in Entra ID Configure and manage roles across Microsoft 365 services Troubleshoot identity synchronization issues Deploy modern authentication methods to enhance security Analyze and respond to security incidents using Microsoft 365 Defender Implement retention policies and sensitivity labels Establish data loss prevention for enhanced information protection Who this book is for If you’re looking to validate your skills in planning, deploying, and managing Microsoft 365 identity and security workloads, this book is for you. Ideal for IT professionals seeking the MS-102 certification, this book ensures success with clear guidance, practical insights, and hands-on exercises. Although not a pre-requisite, prior knowledge of configuring DNS records, experience of administering a Microsoft 365 tenant, and a high-level understanding of information protection concepts will be beneficial.


Microsoft Security, Compliance, and Identity Fundamentals Exam Ref SC-900

Microsoft Security, Compliance, and Identity Fundamentals Exam Ref SC-900

Author: Dwayne Natwick

Publisher: Packt Publishing Ltd

Published: 2022-05-26

Total Pages: 405

ISBN-13: 1801814953

DOWNLOAD EBOOK

Understand the fundamentals of security, compliance, and identity solutions across Microsoft Azure, Microsoft 365, and related cloud-based Microsoft services Key Features • Grasp Azure AD services and identity principles, secure authentication, and access management • Understand threat protection with Microsoft 365 Defender and Microsoft Defender for Cloud security management • Learn about security capabilities in Microsoft Sentinel, Microsoft 365 Defender, and Microsoft Intune Book Description Cloud technologies have made building a defense-in-depth security strategy of paramount importance. Without proper planning and discipline in deploying the security posture across Microsoft 365 and Azure, you are compromising your infrastructure and data. Microsoft Security, Compliance, and Identity Fundamentals is a comprehensive guide that covers all of the exam objectives for the SC-900 exam while walking you through the core security services available for Microsoft 365 and Azure. This book starts by simplifying the concepts of security, compliance, and identity before helping you get to grips with Azure Active Directory, covering the capabilities of Microsoft’s identity and access management (IAM) solutions. You'll then advance to compliance center, information protection, and governance in Microsoft 365. You'll find out all you need to know about the services available within Azure and Microsoft 365 for building a defense-in-depth security posture, and finally become familiar with Microsoft's compliance monitoring capabilities. By the end of the book, you'll have gained the knowledge you need to take the SC-900 certification exam and implement solutions in real-life scenarios. What you will learn • Become well-versed with security, compliance, and identity principles • Explore the authentication, access control, and identity management capabilities of Azure Active Directory • Understand the identity protection and governance aspects of Azure and Microsoft 365 • Get to grips with the basic security capabilities for networks, VMs, and data • Discover security management through Microsoft Defender for Cloud • Work with Microsoft Sentinel and Microsoft 365 Defender • Deal with compliance, governance, and risk in Microsoft 365 and Azure Who this book is for This book is for cloud security engineers, Microsoft 365 administrators, Azure administrators, and anyone in between who wants to get up to speed with the security, compliance, and identity fundamentals to achieve the SC-900 certification. A basic understanding of the fundamental services within Microsoft 365 and Azure will be helpful but not essential. Table of Contents • Preparing for Your Microsoft Exam • Describing Security Methodologies • Understanding Key Security Concepts • Key Microsoft Security and Compliance Principles • Defining Identity Principles/Concepts and the Identity Services within Azure AD • Describing the Authentication and Access Management Capabilities of Azure AD • Describing the Identity Protection and Governance Capabilities of Azure AD • Describing Basic Security Services and Management Capabilities in Azure • Describing Security Management and Capabilities of Azure • Describing Threat Protection with Microsoft 365 Defender • Describing the Security Capabilities of Microsoft Sentinel • Describing Security Management and the Endpoint Security Capabilities of Microsoft 365 • Compliance Management Capabilities in Microsoft • Describing Information Protection and Governance Capabilities of Microsoft 365 (N.B. Please use the Look Inside option to see further chapters)


Microsoft Office 365 Administration Inside Out

Microsoft Office 365 Administration Inside Out

Author: Ed Fisher

Publisher: Microsoft Press

Published: 2017-11-20

Total Pages: 1280

ISBN-13: 1509306587

DOWNLOAD EBOOK

Conquer Microsoft Office 365 Administration–from the inside out! Dive into Microsoft Office 365 Administration–and really put your Office 365 expertise to work. This supremely organized reference packs hundreds of timesaving solutions, tips, and workarounds–all you need to plan, implement, and operate Microsoft Office 365 in any environment. In this completely revamped Second Edition, a new author team thoroughly reviews the administration tools and capabilities available in the latest versions of Microsoft Office 365, and also adds extensive new coverage of Azure cloud services and SharePoint. Discover how experts tackle today’s essential tasks–and challenge yourself to new levels of mastery. • Install, customize, and use Office 365’s portal, dashboard, and admin centers • Make optimal decisions about tenancy, licensing, infrastructure, and hybrid options • Prepare your environment for the cloud • Manage Office 365 identity and access via federation services, password and directory synchronization, authentication, and AAD Connect • Implement alerts and threat management in the Security & Compliance Center • Establish Office 365 data classifications, loss prevention plans, and governance • Prepare your on-premises environment to connect with Exchange Online • Manage resource types, billing and licensing, service health reporting, and support • Move mailboxes to Exchange Online via cutover, staged, and express migrations • Establish hybrid environments with the Office 365 Hybrid Configuration Wizard • Administer Exchange Online, from recipients and transport to malware filtering • Understand, plan, and deploy Skype for Business Online Current Book Service In addition, this book is part of the Current Book Service from Microsoft Press. Books in this program receive periodic updates to address significant software changes for 12 to 18 months following the original publication date via a free Web Edition. Learn more at https://www.microsoftpressstore.com/cbs.


Mastering System Center Configuration Manager

Mastering System Center Configuration Manager

Author: Santos Martinez

Publisher: John Wiley & Sons

Published: 2016-12-29

Total Pages: 1340

ISBN-13: 1119258464

DOWNLOAD EBOOK

Get up to date quickly with clear, expert coverage of SCCM 2016 Mastering System Center Configuration Manager provides comprehensive coverage of Microsoft's powerful network software deployment tool, with a practical hands-on approach. Written by Santos Martinez, Peter Daalmans, and Brett Bennett, this guide walks you through SCCM 2016 with in-depth explanations anchored in real-world applications to get you up to speed quickly. Whether you're planning a new installation or migrating from a previous version of Configuration Manager, this book provides clear instruction and expert insight to get the job done right. Fully aligned with the latest release, the discussion covers the newest tools and features with examples that illustrate utility in a variety of contexts. System Center Configuration Manager (formerly SMS) is one of Microsoft's flagship products; the 2016 release has been updated with better Windows 10 and Windows Server 2016 compatibility, improved tools for managing non-Microsoft mobile devices in the cloud, and more. This book provides start-to-finish coverage and expert guidance on everything you need to get your system up to date. Deploy software and operating systems Automate processes and customize configurations Monitor performance and troubleshoot issues Manage security in the cloud and on Virtual Machines SCCM 2016 improves your ability to handle the bring-your-own-device influx in managing mobile, streamlining the latest hiccup right into the everyday workflow. Mastering System Center Configuration Manager provides the practical coverage you need to get up and running seamlessly.