From eaf14b6520d4cd20cc529a758b33219be674fdb7 Mon Sep 17 00:00:00 2001 From: Andrew Harris Date: Wed, 7 Aug 2019 10:32:45 -0700 Subject: [PATCH] minor updates --- Auditing/README.md | 14 ++++++-------- README.md | 4 ++-- 2 files changed, 8 insertions(+), 10 deletions(-) diff --git a/Auditing/README.md b/Auditing/README.md index 154ff9c..d3a101e 100644 --- a/Auditing/README.md +++ b/Auditing/README.md @@ -2,6 +2,10 @@ Understanding Audit Policy configuration is imperative for your Domain Controllers. This includes Azure Advanced Threat Protection (AATP) and Advanced Threat Analytics (ATA). Use this tool to ensure your DCs have the proper settings to maximize your detection capability. +## Why is this important? + +For more information, please refer to this [blog](https://ciberesponce.com/2017/08/18/ata-auditing-auditpol-advanced-audit-settings-enforcement-lightweight-gateway-service-discovery/). + _**New features in recent versions:**_ - Ability to support Azure ATP (AATP); this is the default value now @@ -10,9 +14,7 @@ _**New features in recent versions:**_ ## Getting Started -For explicit details on using this script, please refer [here](https://aka.ms/ataauditingblog). - -For default values (assess against Azure ATP (AAT), throttling with 10 concurrent processes): +For default values (assess against Azure ATP (AATP), throttling with 10 concurrent processes): ```PowerShell .\Measure-AatpDeployment.ps1 @@ -36,11 +38,7 @@ To make the assessment against just one domain/child-domain, use the "Fqdn" para ```PowerShell .\Measure-AatpDeployment.ps1 -Fqdn "child.contoso.com" -``` - -## Getting Help - -For help please refer to the above blog. In addition, when getting help, please include the Transcript file as illustrated in the blog post. +``` ## Contributing diff --git a/README.md b/README.md index 6026b10..ead32ad 100644 --- a/README.md +++ b/README.md @@ -1,8 +1,8 @@ # About -This repository is for [Azure ATP](https://aka.ms/aatp). +This repository is for [Azure ATP](https://aka.ms/aatp). This repository hosts multiple projects, each solving a specific use-case. If a workaround is no longer required, we will state that and point you to the official product documentation. # Projects -* [Auditing](Auditing/README.md)): Useful to ensure the Domain Controllers have the required Advanced Audit Policy settings to maximize the return of investment for Azure ATP. +* [Auditing](Auditing/README.md): Useful to ensure the Domain Controllers have the required Advanced Audit Policy settings to maximize the return of investment for Azure ATP. # Contributing