I'm looking to learn about best practices for securing Microsoft ecosystems, including Active Directory, workstations, servers, NAS, and Hyper-V hosts. Instead of just piecemeal advice, I would love some recommendations for comprehensive resources like YouTube series, blogs, or websites that cover the topic thoroughly.
4 Answers
It's crucial to start hardening your Active Directory right away. You might want to look into using the Microsoft Security Compliance Toolkit, which provides relevant baselines for hardening that can be applied. Following their guides will help you implement Group Policy Objects effectively.
Check out Microsoft's overview on Privileged Access Workstations. It gives a good starting point for hardening your systems: [Privileged Access Workstations Overview](https://learn.microsoft.com/en-us/security/privileged-access-workstations/overview).
OpenSCAP and CIS-CAT Pro Assessor are also excellent tools for Windows security hardening. Check out this GitHub resource for more info: https://github.com/HotCakeX/Harden-Windows-Security.
You should definitely consider using some tools like PingCastle and PurpleKnight; they are great for hardening Active Directory. Also, don't forget about BloodHound for more insights!
For sure! Adding those to my toolkit right now.
Haha, I love that! Always up for finding good tools!