This is why Active Directory security is so important.

Let’s create a thread with everyone’s hardening tips, detection rules etc 😀

Hardening Guide - https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/best-practices-for-securing-active-directory

Detection rules - https://blueteamblog.com/18-ways-to-detect-malcious-actions-in-your-active-directory-logs-using-siem

#infosec #cybersecurity #BlueTeam https://twitter.com/byt3bl33d3r/status/1288740883718795264
Some more useful things (please share your own ideas too 😀)

Hardening - https://activedirectorypro.com/active-directory-security-best-practices/

Some really good rules here (not all active directory related, but still lots are) - https://github.com/Neo23x0/sigma/tree/master/rules/windows/builtin
Best practices - https://www.dnsstuff.com/active-directory-best-practices
The Ultimate Guide to Active Directory Best Practices 2020 - DNSstuff

Read this Active Directory best practices guide to learn AD basics that can help any IT pro up their security game and become more efficient.

https://www.dnsstuff.com/active-directory-best-practices
Would anyone like a blog post summarising all the information in this thread + more? Just a round up of active directory security tips, hardening, best practices and detections?
Blog Post out now, hope you enjoy 😀 https://blueteamblog.com/active-directory-security-hardening-auditing-and-detection-rules
Active Directory - Security Hardening, Auditing and Detection Rules - Blue Team Blog

Learn how to secure your active directory properly. Includes hardening, auditing, best practices and detection rules.

https://blueteamblog.com/active-directory-security-hardening-auditing-and-detection-rules
If you enjoyed this thread, I just posted a blog post with all this information + more. Check it out here - https://blueteamblog.com/active-directory-security-hardening-auditing-and-detection-rules
Active Directory - Security Hardening, Auditing and Detection Rules - Blue Team Blog

Learn how to secure your active directory properly. Includes hardening, auditing, best practices and detection rules.

https://blueteamblog.com/active-directory-security-hardening-auditing-and-detection-rules
You can follow @blueteamblog.
Tip: mention @twtextapp on a Twitter thread with the keyword “unroll” to get a link to it.

Latest Threads Unrolled:
There are a lot of misconceptions about the Turkish diaspora in Germany. Since i just finished writing an essay about this topic I thought it's time to give other people
Read more
Las mejores calculadoras online en 2020A thread http://totumat.com/2020/11/26/las-mejores-calculadoras-online-en-2020/ Cuando se estudian asignaturas que requieren de cálculos complicados, nada mejor que contar con una buena calculadora.
Read more
Mitigating #ClimateChange is as much about taking up new techs as about leaving others behindMost studies focus on #coal's global downfall but another #energy tech decline is loomingRead my new
Read more