Skip to content
/ DefenderXDR-AdvancedHunting Public

Defender XDR Advanced Hunting Queries (MDE, MDAV, Device Discovery)

License

MIT license
7 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

gh-andrem/DefenderXDR-AdvancedHunting

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

76 Commits

Queries

Queries

 
 

Scripts

Scripts

 
 

LICENSE

LICENSE

 
 

MDE-ASR-Rules-Overview.md

MDE-ASR-Rules-Overview.md

 
 

README.md

README.md

 
 

Repository files navigation

Defender XDR Advanced Hunting Queries

Overview of available queries

  • MDE Attack Surface Reduction Rules Report
  • MDE Controlled Folder Access Report
  • MDE Device Control Events
  • MDE Device Network and IP Information Report
  • MDE Endpoint Agent Health Status Report
  • MDE Exploit Protection Report
  • MDE Threat and Vulnerability Management (TVM) SCID Overview
  • MDAV Scan Status
  • MDAV Status Overview
  • SmartScreen
  • Network Protection

About

Defender XDR Advanced Hunting Queries (MDE, MDAV, Device Discovery)

Topics

kql defender-for-endpoint advanced-hunting m365-defender defender-xdr

Resources

Readme

License

MIT license
Activity

Stars

7 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages