Thank you @sdleslie for the detailed feedback. Much appreciated. We're
already aware of the items you mentioned, and fixing (most) of them in
the coming version.
This is an amazing feature making it easier to identify the type and
kind of threat and the path the threat is taking by quickly identifying
the user and its activity.
A couple of issues I've noted from a quick play with the module (v1.0.0
as retrieved from the PowerShell Gallery): 1. The HelpInfoUri specified
in the module manifest is broken:
https://go.microsoft.com/fwlink/?linkid=22483082. The FunctionsToExport
array in the module manifest uses wildcards for so...
Current experience is that this script doen't seem to work on a domain
controller without the FSMO roles. You get allot of timing issues. On
the DC with FSMO everything works. Server 2022 psversion 5.1 & 7.4.1 non
FSMO errors. Get-ADObject : Directory object not found
DefenderForIdentity.psm1:394 ch...
Latest Comments