Using the API to get devices with Malware

Question

Hi All,&nbsp;Does anyone have any guidance on how to get the Devices with malware detection with the API? I dont see it in the documentation unless I've missed it. Someone posted a way how to get the query but I am not sure what end point to use. Ideally this is the data I would like to extract.&nbsp;&nbsp;Thanks yall

paul_huijbregts · Answer

The advanced hunting API should be a good endpoint for this. It will allow you to run that query against it.

https://docs.microsoft.com/en-us/microsoft-365/security/defender-endpoint/run-advanced-query-api?view=o365-worldwide

Forum Discussion

Using the API to get devices with Malware

1 Reply

Resources