Forum Discussion

sagarsetia2225's avatar
sagarsetia2225
Copper Contributor
Jul 06, 2020

Missing KBs with Advanced Hunting

Hello Team, I am looking to use Advanced Hunting to get list of Missing KBs on a Device(s).

Need similar info provided by this API, https://docs.microsoft.com/en-us/windows/security/threat-protection/microsoft-defender-atp/get-missing-kbs-machine.

 

Also, I am able to use DeviceTvmSoftwareInventoryVulnerabilities table, But it provides list of all CVEs rather than just the name of missing KB/Patch.

 

Any leads would be appreciated 🙂

  • krisk2112's avatar
    krisk2112
    Copper Contributor

    sagarsetia2225 Looking for the same thing too. Occasionally an update will get stuck and requires a reboot and some troubleshooting to get it back, but I haven't found any way yet to find out which systems those are, except that there's a loose correlation between the Health Status != "Active" & Last Seen is not updated, and yet the system is still on the network.

     

Resources