Select Page

DSC Future Direction Update

PowerShell Core and DSC PowerShell is open sourced and moving over to .Net Standard 2.0 for the reasons outlined in Jeffrey’s blog post. Like PowerShell, PowerShell Desired State configuration (DSC) needs to meet customers in this multi-platform, multi-cloud, multi-OS world ... continue reading
Viewing Memory in PowerShell

Viewing Memory in PowerShell

Hello there, this is Benjamin Morgan, and I’m a Premier Field Engineer covering Active Directory and Platforms related topics. This is my first blog post I hope you are all as excited about this as I am! Today I wanted ... continue reading
Windows 10 platform resilience against the Petya ransomware attack

Windows 10 platform resilience against the Petya ransomware attack

The Petya ransomware attack on June 27, 2017 (which we analyzed in-depth in this blog) may have been perceived as an outbreak worse than last month's WannaCrypt (also known as WannaCry) attack. After all, it uses the same SMB exploit ... continue reading
New ransomware, old techniques: Petya adds worm capabilities

New ransomware, old techniques: Petya adds worm capabilities

(Note: We have published a follow-up blog entry on this ransomware attack. We have new findings from our continued investigation, as well as platform mitigation and protection information: Windows 10 platform resilience against the Petya ransomware attack.) On June 27, ... continue reading
clip_image002

ConfigMgr 1702: The case of unexplained – Client Peer cache not getting disabled even after disabling it via Client Settings

Hi Folks, I am back with the unexplained series. Today being the discussion on the new feature called Client Peer Cache introduced in ConfigMgr 1610. Even though the issue in the blog talks about Client Peer Cache still in use ... continue reading
1

Hyper-V authentication in Windows Server 2016 for managing remote Hyper-V servers through RSAT

Hello, my name is Ayushie Bhat and I’m a Support Engineer with the Windows Core team. Today, I’m going to talk about the authentication in Windows Server 2016 and discuss the case of creating a VM on a CORE server ... continue reading
Initial alerts triggered by PowerShell activities as detected by Windows Defender ATP

Windows Defender ATP thwarts Operation WilySupply software supply chain cyberattack

Several weeks ago, the Windows Defender Advanced Threat Protection (Windows Defender ATP) research team noticed security alerts that demonstrated an intriguing attack pattern. These early alerts uncovered a well-planned, finely orchestrated cyberattack that targeted several high-profile technology and financial organizations ... continue reading

Why Bitlocker takes longer to complete the encryption in Windows 10 as compared to Windows 7

Hello, my name is Ritesh Sinha and I am a Support Escalation Engineer on the Windows team. Today’s blog will cover “Why Bitlocker takes longer to complete the encryption in Windows 10 as compared to Windows 7”. A brief summary ... continue reading

Updating Nano Server

[Edit 3/6/2017]: Information in this post has been added to our official Nano Server documentation on TechNet which is more current: https://docs.microsoft.com/windows-server/get-started/update-nano-server Now that the Cumulative Update for Windows Server 2016 was released on September 26, 2016 (KB3192366), some people ... continue reading