Februari 2023 Microsoft & Security NL meetup

17.00 - 18.00 Inloop & eten

18.00 - 19.00 Leo Visser: "Improve security with your own PSGallery"

Did you ever make a typo when importing a PowerShell module? What if an attacker uploaded a module with that name to the PSGallery? Maybe you are using a malicious version of the Connect-AzAccount cmdlet without knowing it. To increase the security of your development environment you can create an internal artifact feed with Azure DevOps. There you can easily mirror packages from the PSGallery in a controlled manner. You can even make sure only specific versions are allowed. This would allow you to test a version before allowing it into the production environment. In this talk you will learn how to set up such a gallery and how to use it in PowerShell. You will also learn how to use this gallery to host PowerShell modules internally. So join the talk and learn how to protect your code supply chain!

19.00 - 19.15 Break

19.15 - 20.15 Erik Loef: "Be prepared when the sh*t hits the fan"

An Incident Response Plan is something valueable to have in the case of an incident. But where to start and what to cover in an incident response plan. in addition, it is now also part of the NIS2 legislation. After the write up, how do I know the right things are on paper? Let's test the scenario with your CIRT Team and what are your options and powershell ready to use CMDlets to operate fast and effective in the search for where the incident took place.

20.15 - 21.00 Pubquiz & borrel

Legendarische pubquiz met een mix van (Microsoft) security vragen en popculture vragen door the man, the myth, the legend: MVP Koos Goossens.

21.00 Einde