@DebugPrivilege I wrote a long ass list of stuff to configure with tweeps inputs (and urs) before :)

@UK_Daniel_Card Will take a look.

@DebugPrivilege Often it's easier to deal with the full on bang of a ransomware case, agree a time to restore and stand up a new isolated environment. Roll all those passwords and monitor outbound traffic 🙏.

@Davewarrington More than just rotating passwords.

@DebugPrivilege @RemindMe_OfThis in 2 months

@DebugPrivilege Looking forward to reading this.

@DebugPrivilege Thanks for your awesome work beforehand

@DebugPrivilege We talking before or after deployment?

@DebugPrivilege Ransomware on AD? No worries