Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn to conduct digital forensics and incident response (DFIR) investigations of malicious scripts within Microsoft Intune environments through this conference presentation. Explore a real-world 2023 case study involving unauthorized access to an Azure tenant by the Scattered Spider threat group, examining how attackers leveraged cloud-based device and application management systems for malicious purposes. Master forensic analysis techniques for recreating attacks and understanding their impact, including baseline configuration establishment, specialized forensic tool deployment, and systematic methodologies for detecting and analyzing cloud-based threats. Discover how to leverage the Microsoft Graph API for investigation purposes, track user actions across cloud environments, analyze modification timestamps for timeline reconstruction, and decode PowerShell script contents using tools like CyberChef. Gain insights into the evolving landscape of enterprise security challenges posed by cloud-based solutions and develop practical skills for investigating incidents in Microsoft Intune and broader Azure environments.
