Andrew Matveychuk

OpenClaw 2026.2.24 🦞 🌍 Stop phrases in 10+ languages (your bot finally understands "arrête") ⌨️ Typing indicators that don't ghost you 🪟 PowerShell 7 because it's not 2019 🔒 30+ security fixes (we don't sleep so you can) Updating is self-care. https://lnkd.in/dMvMJmmk

1

Still running your applications on .NET Framework 4.5? Outdated frameworks limit performance, increase security vulnerabilities, and restrict you to Windows-only deployments—slowing down innovation and increasing operational risks. Upgrading to .NET Core / .NET 6 / .NET 7 / .NET 8+ gives you a faster, more secure, cloud-ready, cross-platform foundation built for modern business demands. At Bow & Baan UK, our proven .NET upgrade methodology ensures a smooth migration from legacy .NET to modern .NET—with minimal disruption and maximum performance gains. A modern .NET upgrade unlocks:  ⚡ High-speed execution with Kestrel, JIT/AOT optimisations & async pipelines  🔐 Enhanced security using Identity, OAuth2, JWT tokens, TLS 1.3 & runtime hardening  🖥️ Cross-platform compatibility across Windows, Linux, Docker & Kubernetes  🧩 Modern architecture patterns including microservices, gRPC, minimal APIs & clean DI  💾 Optimised data performance with EF Core, compiled queries & in-memory caching  ☁️ Cloud-native readiness with Azure App Services, AKS, Functions & containerised deployments  🔄 Reduced maintenance costs through LTS support & automated CI/CD pipelines  Whether you need full migration or phased module upgrades, our experts ensure a risk-free transition with measurable performance and security improvements. Start your upgrade → www.bowandbaanuk.com #DotNetUpgrade #DotNetCore #DotNet8 #LegacyModernisation #WCFTogRPC #Microservices #AzureMigration #CrossPlatform #EFCore #BowAndBaanUK 

15

Screenshots in SharePoint. Tickets in Jira. Logs in SIEM. Policies in random folders. That chaos makes each audit a reconstruction project. Aegis connects to your existing stack, centralizes compliance evidence, and maintains a full audit trail for regulators and internal audit. With GDPR-compliant, EU-based hosting, your data and documentation stay under European control. Turn scattered artifacts into structured, defensible compliance. #audittrail #securitycompliance #gdpr

🛫 Ready to take your Zabbix PostgreSQL setup up to the next level? Well, no better way to do it than with automatic failover! 🖥️ Check out the blog post below by our own Patrik Uytterhoeven. He will take you through our overview on creating a streamlined High-Availability architecture for Zabbix using PostgreSQL, pg_auto_failover, HAProxy Technologies, and PgBackRest. https://lnkd.in/dXeWvbmw #zabbix #postgresql #networking #haproxy #monitoring #linux

42

🎆How to Get Managed App ID Last modified Date App Version Details of Built-in Android App using Intune Copilot Explorer - https://lnkd.in/gt6pvjnG 🎊Get Built-in Android Applications 🎊Managing and Monitoring Intune Managed Applications 🎊Other Useful Queries and Next Steps to Consider 🎊End Result: Viewing Built-in Android Applications Using Intune Copilot Explorer

1

Your Quietest Azure #Attack #Surface #Guest users rarely look dangerous. They arrive to collaborate, help a project, or integrate a partner. And then.. they stay. In #Azure #EntraID, guest accounts are one of the most underestimated risks we see during #RedTeam and penetration testing engagements. --- Guests That Never Left Most Entra ID tenants accumulate guests over years. #External users invited for a short task remain enabled long after the work is done. Some never had #MFA enforced. Others were granted permissions "temporarily" that quietly became permanent. Over time, this creates a shadow population of identities no one actively owns. From an attacker’s perspective, these accounts are gold. --- #Permission Creep Meets Identity Blindness Guest users often bypass the same governance rigor applied to employees. They accumulate group memberships, application roles, and access to SharePoint, Azure resources, or even management planes. In several assessments, I have seen guests converted into full members by admins to "fix access issues" without revisiting their security posture. Once converted, they blend in. Logging, alerts, and reviews rarely distinguish them from internal users. --- ⚠️ Why Red Teams Love Guests Guests frequently lack MFA, #ConditionalAccess coverage, or sign-in monitoring. Their credentials may live in external environments with weaker #security controls. A single compromised guest account can provide a low-noise foothold into your cloud identity plane, often without triggering SOC alarms. This is not theoretical. This is operational reality. --- 🛠️ Review Them Before #Adversaries Do Guest hygiene should be continuous, not annual. Review MFA status. #Audit permissions. Identify stale accounts. Track guest-to-member conversions. Remove what is no longer needed. Project @ Github: https://lnkd.in/d2cBftS2 If you have not reviewed your Entra ID guests recently, now it is a good time! - https://logisek.com - Logisek #CyberSecurity #InfoSec #OffSec #RedTeam #PenTest #AzureAD #SecurityMindset #Github #OffensiveSecurity #Logisek

21

Many people still think of .NET as Windows-only, tied to old tools, and hard to work with. That view is long outdated. Today, C# and .NET are flexible, modern, and used across many environments. Join us tomorrow, Wed. 13th, as we kick off our May webinar series: “Language Evolution Over the Last 5 Years.” In this first session, Erik Shafer, Senior Consultant at Improving, will walk through what C# and the .NET platform look like in 2026. A good session for developers who want a clear picture of modern .NET. 🗓️ Tomorrow, Wed. 13th ⏱️ 14:00hs GMT-3 ⏳ Join the session: https://lnkd.in/dhk_CDbs #LifeAtImproving #ImprovingAI #NET

3

Windows Server 2012 and 2012/R2 will reach end of support on October 10, 2023. Here’s why we recommend upgrading to Azure for advanced security, performance, and innovation. #cloud #digitaltransformation #PaaS

2

Database monitoring doesn’t have to be complicated, and our latest Handy Tips video proves it. In this quick walkthrough, we show how to set up MySQL monitoring using Zabbix Agent 2 and the official template, step by step. From linking the template and configuring user macros to preparing database permissions, everything is covered in a clear and practical way. You’ll also see why the agent doesn’t need to run on the same machine as the database, and how MySQL metrics start flowing in right out of the box. 📽️ Watch now: https://lnkd.in/dDuPsSAn

123

1 Comment

🟢 𝗜𝗻𝘁𝘂𝗻𝗲 𝗗𝗲𝘃𝗶𝗰𝗲𝘀 𝗦𝘁𝘂𝗰𝗸 𝗶𝗻 𝗣𝗲𝗻𝗱𝗶𝗻𝗴 𝗖𝗼𝗺𝗽𝗹𝗶𝗮𝗻𝗰𝗲 Devices show up in Intune, but compliance never fully applies. This usually happens when required apps or configuration profiles are assigned, but the device never completes the evaluation cycle. The device appears managed, but enforcement never actually lands. The issue sits in the gap between enrollment and policy confirmation. 𝟏𝟎-𝐦𝐢𝐧𝐮𝐭𝐞 𝐜𝐡𝐞𝐜𝐤: •  Go to Intune Admin Center •  Devices → All devices → Select a device •  Check “Compliance” tab → Status details •  Then go to Device configuration → Profiles → Select profile → Device status •  Look for “Pending” or “Not evaluated” SMB reality: once a device shows as “managed,” it’s often assumed policies are active. The device is visible. The control isn’t. #Intune #EndpointManagement #DeviceSecurity #Microsoft365 #SMBTech

2

1 Comment

🛑 URGENT: Zero-Day in SharePoint On-Prem Is Being Actively Exploited If you're running on-prem Microsoft SharePoint, this is not just another patch cycle. CVE-2025-53770—nicknamed “ToolShell”—is enabling unauthenticated remote code execution and bypassing Microsoft’s original fix for CVE-2025-49706. If you have public-facing SharePoint servers, assume compromise. Investigate now. ➡️ Read the full breakdown and mitigation steps now: https://lnkd.in/eyaRvmGp

1

A few weeks ago, Jakub Jareš delivered the awesome Pester session "Cover your "legacy" PowerShell code with Tests". In this talk, Jakub showed multiple patterns and techniques that can be applied when adding tests to existing scripts. He starts from showing basic patterns (such as input → function → mock), and then expand on them by adding custom assertions, returning objects with assertable methods and testing in module scope. Check out the recording: https://lnkd.in/etDz476y #PowerShell #Pester #Testing #TestAutomation

14

Why does your package work when you test it locally but fail when deployed through Intune or ConfigMgr? The answer often lies in understanding system context. 🎬 Session 27: Understanding System Context 🎬 💡 Why System Context Matters When applications are deployed through infrastructure management tools (IMTs) like Microsoft Endpoint Manager (ConfigMgr) or Intune, they are almost always installed under the Local System Account (NT AUTHORITY\SYSTEM). This account is more powerful than any administrator, and it runs most Windows services. If you only test in your user context, you might miss how the package behaves when deployed at scale—leading to failed installs or missing configurations. 📚 Key Concepts from this Lesson: 🔹 System Context Defined: Installations pushed by IMTs are executed under the Local System Account, not the logged-in user. 🔹 PsExec Tool: A Sysinternals utility that lets you open a command prompt in system context (psexec -i -s cmd.exe). From there, you can test MSI installations exactly as they’ll run in production. 🔹 User vs. System Data: If your package writes user registry keys or profile files, they won’t appear unless you use mechanisms like advertised shortcuts or Active Setup to ensure they’re delivered per user. 🔹 Troubleshooting Tip: Always verify your packages in system context before deployment to avoid surprises in enterprise environments. 💼 Advanced Installer Context Advanced Installer gives you the tools to handle user data correctly through advertised shortcuts, Active Setup, and custom actions, ensuring your package works across all contexts. Pairing it with PsExec testing adds a layer of confidence before enterprise rollout. 🎯 Takeaway Testing only in your user account isn’t enough. Understanding and validating in system context is critical for reliable enterprise deployments with Intune, ConfigMgr, or other IMTs. 👍 If this session clarified the importance of system context, like and share it with your IT packaging team. ▶️ Watch now: [https://loom.ly/MS27FJA] #MSIPackaging #AdvancedInstaller #WindowsInstaller #SoftwareDeployment #ITProfessionals #ApplicationPackaging #EnterpriseIT #SystemContext

4

1 Comment

Active Exploitation Alert: SharePoint Server Vulnerabilities On July 19, 2025, Microsoft disclosed a set of actively exploited vulnerabilities affecting on-premise SharePoint Servers tracked as CVE-2025-53770, CVE-2025-53771, and earlier variants CVE-2025-49704/49706, collectively known as ToolShell. According to telemetry from WithSecure exploitation attempts were detected as early as July 7th, a clear indication this threat has been in-the-wild for weeks. These vulnerabilities allow unauthenticated remote code execution (RCE) enabling attackers to: - Access sensitive SharePoint content and internal configs - Deploy webshells - Conduct post-exploitation actions like network reconnaissance and lateral movement 📌 Important: These issues affect on-premise SharePoint Server only — SharePoint Online is not impacted. If your organization is running on-premise SharePoint: ✅ Patch immediately ✅ Investigate for signs of compromise ✅ Follow Microsoft’s remediation guidance Time is critical. The sooner you act, the better your chances of minimizing risk. Read the detailed report by our Threat Intelligence team 👇 #CyberSecurity #SharePoint #Microsoft #InfoSec #PatchNow #ThreatIntelligence #ToolShell #RCE #SecurityAlert

12